CVE-2024-5558 | Schneider Electric SpaceLogic AS-P/SpaceLogic AS-B up to 5.0.3 toctou (SEVD-2024-163-04)

Inserito da Angelo Barbosa | Giu 12, 2024 | CVE

A vulnerability classified as critical has been found in Schneider Electric SpaceLogic AS-P and SpaceLogic AS-B up to 5.0.3. Affected is an unknown function. The manipulation leads to time-of-check time-of-use.

This vulnerability is traded as CVE-2024-5558. Local access is required to approach this attack. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-5558 | Schneider Electric SpaceLogic AS-P/SpaceLogic AS-B up to 5.0.3 toctou (SEVD-2024-163-04)

Post correlati

CVE-2023-49695 | Elecom WRC-X3000GSN/WRC-X3000GS/WRC-X3000GSA Request os command injection

CVE-2024-34689 | SAP Business Workflow (WebFlow Services) up to 758 WebFlow Service server-side request forgery

CVE-2024-1698 | NotificationX Plugin up to 2.8.2 on WordPress sql injection

CVE-2023-39254 | Dell DUP Framework up to 4.9.9 uncontrolled search path (dsa-2023-338)