CVE-2024-12399 | Schneider Electric Pro-face GP-Pro EX/Pro-face Remote HMI Communication Channel message integrity (SEVD-2025-014-02)

Inserito da Angelo Barbosa | Gen 17, 2025 | CVE

A vulnerability classified as problematic has been found in Schneider Electric Pro-face GP-Pro EX and Pro-face Remote HMI. This affects an unknown part of the component Communication Channel Handler. The manipulation leads to improper enforcement of message integrity.

This vulnerability is uniquely identified as CVE-2024-12399. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-12399 | Schneider Electric Pro-face GP-Pro EX/Pro-face Remote HMI Communication Channel message integrity (SEVD-2025-014-02)

Post correlati

CVE-2024-43409 | TryGhost up to 5.89.4 improper authentication (GHSA-78×2-cwp9-5j42)

CVE-2024-48406 | SunBK201 umicat up to 0.3.2 src/uct_upstream.c power buffer overflow

CVE-2024-0572 | Totolink LR1200GB 9.1.0u.6619_B20230130 /cgi-bin/cstecgi.cgi setOpModeCfg pppoeUser stack-based overflow

CVE-2024-24925 | Siemens Simcenter Femap prior 2306.0000 Catia Model File uninitialized pointer (ssa-000072)