6 matches found
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
creationtimestamp| type| source ---|---|--- 2024-07-11 11:37:47+00:00| seen| https://t.me/cvedetector/647 2024-12-10 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-345-02...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service, privilege escalation, and potentially kernel execution when a malicious actor with local user access crafts a script/program using an IOCTL call in the Foxboro.sys driver...
CVE-2024-5681
CVE-2024-5681 involves the Schneider Electric EcoStruxure Foxboro DCS product family, specifically the Foxboro.sys driver used by EcoStruxure Foxboro DCS Core Control Services. The issue arises from insufficient input validation in an IOCTL handling path, enabling a local attacker with user acces...