CVE-2024-5679 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8 Kernel Memory Foxboro.sys out-of-bounds write (SEVD-2024-191-02)

Inserito da Angelo Barbosa | Lug 11, 2024 | CVE

A vulnerability was found in Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8. It has been declared as critical. This vulnerability affects unknown code in the library Foxboro.sys of the component Kernel Memory Handler. The manipulation leads to out-of-bounds write.

This vulnerability was named CVE-2024-5679. The attack needs to be approached locally. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-5679 | Schneider Electric EcoStruxure Foxboro DCS Core Control Services up to 9.8 Kernel Memory Foxboro.sys out-of-bounds write (SEVD-2024-191-02)

Post correlati

CVE-2024-21363 | Microsoft unknown vulnerability

CVE-2024-37794 | CVC5 Solver 1.1.3 SMT2 File denial of service (Issue 10813)

CVE-2024-4964 | D-Link DAR-7000-40 V31R02B1413C /firewall/urlblist.php file unrestricted upload (SAP10354)

CVE-2024-7063 | ElementsKit Pro Plugin up to 3.6.6 on WordPress information disclosure