Heap-based buffer overflow in RFManagerService.exe in Schneider Electric Accutech Manager 2.00.1 and earlier allows remote attackers to execute arbitrary code via a crafted HTTP request.
8.2AI Score
0.962EPSS
A CWE-120: Buffer Copy without Checking Size of Input (Classic Buffer Overflow) vulnerabilityexists that could cause user privilege escalation if a local user sends specific string input to alocal function call.
7.8CVSS
7.6AI Score
0.0004EPSS