A vulnerability classified as critical has been found in Shanghai Sunfull Automation BACnet Server HMI1002-ARM 2.0.4. This affects an unknown part of the component Message Handler. The manipulation leads to buffer overflow.
This vulnerability is uniquely identified as CVE-2024-4511. Access to the local network is required for this attack to succeed. Furthermore, there is an exploit available.
The vendor was contacted early about this disclosure but did not respond in any way.