CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of
confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device.
Metrics
Affected Vendors & Products
References
History
Wed, 11 Dec 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Wed, 11 Dec 2024 09:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | CWE-20: Improper Input Validation vulnerability exists that could lead to a denial of service and a loss of confidentiality, integrity of the controller when an unauthenticated crafted Modbus packet is sent to the device. | |
Weaknesses | CWE-20 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: schneider
Published: 2024-12-11T09:36:29.282Z
Updated: 2024-12-11T15:22:05.910Z
Reserved: 2024-11-26T07:11:06.935Z
Link: CVE-2024-11737
Vulnrichment
Updated: 2024-12-11T15:22:01.081Z
NVD
Status : Received
Published: 2024-12-11T10:15:06.677
Modified: 2024-12-11T10:15:06.677
Link: CVE-2024-11737
Redhat
No data.