Lucene search
CERTVDEVULNRICHMENT:CVE-2024-41174HistoryAug 27, 2024 - 8:01 a.m.
CVE-2024-41174 Beckhoff: Improper input neutralization vulnerability in the IPC-Diagnostics package in TwinCAT/BSD
2024-08-2708:01:09
CWE-79
CERTVDE
github.com
5
cve-2024-41174
beckhoff
ipc-diagnostics
twincat/bsd
improper input neutralization
local attacker
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0.001
Percentile
20.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
The IPC-Diagnostics package in TwinCAT/BSD is susceptible to improper input neutralization by a low-privileged local attacker.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:beckhoff:ipc_diagnostics:*:*:*:*:*:*:*:*"
],
"vendor": "beckhoff",
"product": "ipc_diagnostics",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "2.0.0.1",
"versionType": "semver"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:beckhoff:twincat\\/bsd:*:*:*:*:*:*:*:*"
],
"vendor": "beckhoff",
"product": "twincat\\/bsd",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "14.1.2.0",
"versionType": "semver"
}
],
"defaultStatus": "unknown"
}
]References
Related
cvelist
cvelist
nvd
nvd
CVE-2024-41174
2024-08-27 08:15:04
nessus
nessus
Beckhoff (CVE-2024-41174)
2024-09-12 00:00:00
cve
cve
CVE-2024-41174
2024-08-27 08:15:04
CVSS3
7.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
AI Score
6.7
Confidence
High
EPSS
0.001
Percentile
20.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2024-41174