CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AutomationDirect C-more EA9 HMI contains a function with bounds checks that can be skipped, which could result in an attacker abusing the function to cause a denial-of-service condition or achieving remote code execution on the affected device...

9.8CVSS7.8AI score0.03018EPSS

Exploits0References2

CISA•added 2025/02/04 12:0 p.m.•2 views

CISA Releases Nine Industrial Control Systems Advisories

CISA released nine Industrial Control Systems ICS advisories on February 4, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-035-01 Western Telematic Inc NPS Series, DSM Series, CPM Series ICSA-25-035-02 Rockwe...

7.1AI score

Exploits0References9

NVD•added 2025/01/30 9:15 p.m.•6 views

CVE-2024-11609

AutomationDirect C-More EA9 EAP9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability ...

7.8CVSS0.0162EPSS

Exploits0References2

NVD•added 2025/01/30 9:15 p.m.•6 views

CVE-2024-11610

AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that th...

7.8CVSS0.01463EPSS

Exploits0References2

OSV•added 2025/01/30 9:15 p.m.•2 views

CVE-2024-11611

7.8CVSS7.5AI score0.01463EPSS

Exploits0References2

OSV•added 2025/01/30 9:15 p.m.•2 views

CVE-2024-11610

7.8CVSS6.3AI score0.01463EPSS

Exploits0References2

NVD•added 2025/01/30 9:15 p.m.•7 views

CVE-2024-11611

7.8CVSS0.01463EPSS

Exploits0References2

Cvelist•added 2025/01/30 8:18 p.m.•11 views

CVE-2024-11611 AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability

7.8CVSS0.01463EPSS

Exploits0References2

Cvelist•added 2025/01/30 8:18 p.m.•17 views

CVE-2024-11610 AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability

7.8CVSS0.01463EPSS

Exploits0References2

Vulnrichment•added 2025/01/30 8:18 p.m.•8 views

CVE-2024-11610 AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability

7.8CVSS8.1AI score0.01463EPSS

Exploits0References2

CVE•added 2025/01/30 8:18 p.m.•50 views

CVE-2024-11610

CVE-2024-11610 affects AutomationDirect C-More EA9/EAP9 programming software. The vulnerability stems from parsing EAP9 files, where improper validation of user-supplied data can cause memory corruption and enable remote code execution. Exploitation requires user interaction (target opens a malic...

7.8CVSS8.1AI score0.01463EPSS

Exploits0References2Affected Software1

CVE•added 2025/01/30 8:18 p.m.•59 views

CVE-2024-11609

AutomationDirect C‑More EA9/EAP9 contains a stack-based buffer overflow in the EAP9 file parsing due to insufficient validation of user-supplied data length. This allows remote code execution in the affected EA9 installations, with user interaction required (target must visit a malicious page or ...

7.8CVSS8.1AI score0.0162EPSS

Exploits0References2Affected Software1

CNNVD•added 2025/01/30 12:0 a.m.•1 views

AutomationDirect C-More EA9 Programming Software 安全漏洞

AutomationDirect C-More EA9 Programming Software is a programming software from AutomationDirect, Inc. A security vulnerability exists in AutomationDirect C-More EA9 Programming Software that stems from a lack of proper validation of the length of user-supplied data when parsing an EAP9 file,...

7.8CVSS8AI score0.0162EPSS

Exploits0References2

Zero Day Initiative•added 2024/12/11 12:0 a.m.•6 views

AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AutomationDirect C-More EA9. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS7AI score0.01463EPSS

Exploits0References1

Zero Day Initiative•added 2024/12/11 12:0 a.m.•7 views

AutomationDirect C-More EA9 EAP9 File Parsing Memory Corruption Remote Code Execution Vulnerability

7.8CVSS7AI score0.01463EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by