Ecostruxure Foxboro Dcs Control Core Services Security Vulnerabilities and Issues — Ecostruxure Foxboro Dcs Control Core Services CVE List

Lucene search

Schneider-electricEcostruxure Foxboro Dcs Control Core Services

5 matches found

CVE•added 2024/07/11 9:15 a.m.•63 views

CVE-2024-5679

CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service, orkernel memory leak when a malicious actor with local user access crafts a script/program usingan IOCTL call in the Foxboro.sys driver.

7.1CVSS6.8AI score0.00035EPSS

CVE•added 2024/07/11 9:15 a.m.•61 views

CVE-2024-5681

CWE-20: Improper Input Validation vulnerability exists that could cause local denial-of-service,privilege escalation, and potentially kernel execution when a malicious actor with local useraccess crafts a script/program using an IOCTL call in the Foxboro.sys driver.

7.8CVSS6.8AI score0.00015EPSS

CVE•added 2024/07/11 9:15 a.m.•58 views

CVE-2024-5680

CWE-129: Improper Validation of Array Index vulnerability exists that could cause local denial-of-service when a malicious actor with local user access crafts a script/program using an IOCTLcall in the Foxboro.sys driver.

7.1CVSS6.7AI score0.00033EPSS

CVE•added 2023/06/14 8:15 a.m.•31 views

CVE-2023-2569

A CWE-787: Out-of-Bounds Write vulnerability exists that could cause local denial-of-service,elevation of privilege, and potentially kernel execution when a malicious actor with local useraccess crafts a script/program using an IOCTL call in the Foxboro.sys driver.

7.8CVSS7.4AI score0.00049EPSS

CVE•added 2023/06/14 8:15 a.m.•29 views

CVE-2023-2570

A CWE-129: Improper Validation of Array Index vulnerability exists that could cause localdenial-of-service, and potentially kernel execution when a malicious actor with local user accesscrafts a script/program using an unpredictable index to an IOCTL call in the Foxboro.sys driver.

7.8CVSS7.3AI score0.00036EPSS