P1-540 Firmware Security Vulnerabilities and Issues — P1-540 Firmware CVE List

Lucene search

AutomationdirectP1-540 Firmware

9 matches found

CVE•added 2024/05/28 4:15 p.m.•37 views

CVE-2024-24947

A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This C...

8.2CVSS7.5AI score0.00473EPSS

CVE•added 2024/05/28 4:15 p.m.•35 views

CVE-2024-24963

A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnera...

9.8CVSS7.2AI score0.00496EPSS

CVE•added 2024/05/28 4:15 p.m.•34 views

CVE-2024-21785

A leftover debug code vulnerability exists in the Telnet Diagnostic Interface functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted series of network requests can lead to unauthorized access. An attacker can send a sequence of requests to trigger this vulnerability.

9.8CVSS6.7AI score0.00739EPSS

CVE•added 2024/05/28 4:15 p.m.•33 views

CVE-2024-24946

8.2CVSS7.5AI score0.00377EPSS

CVE•added 2024/05/28 4:15 p.m.•30 views

CVE-2024-24962

9.8CVSS7.2AI score0.00379EPSS

CVE•added 2024/05/28 4:15 p.m.•24 views

CVE-2024-22187

A write-what-where vulnerability exists in the Programming Software Connection Remote Memory Diagnostics functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to an arbitrary write. An attacker can send an unauthenticated packet to trigger this vulnerabilit...

9.1CVSS7AI score0.0086EPSS

CVE•added 2024/05/28 4:15 p.m.•24 views

CVE-2024-23601

A code injection vulnerability exists in the scan_lib.bin functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted scan_lib.bin can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

9.8CVSS7.5AI score0.00888EPSS

CVE•added 2024/05/28 4:15 p.m.•23 views

CVE-2024-23315

A read-what-where vulnerability exists in the Programming Software Connection IMM 01A1 Memory Read functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can send an unauthenticated packet to trigger this...

7.5CVSS6.6AI score0.0025EPSS

CVE•added 2024/05/28 4:15 p.m.•23 views

CVE-2024-24851

A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.

7.5CVSS7.3AI score0.00612EPSS