CVE-2024-10511 | Schneider Electric PowerChute Serial Shutdown up to 1.2.0.301 Web Interface /accessdenied improper authentication (SEVD-2024-345-01)

Posted by Angelo Barbosa | Dec 11, 2024 | CVE

A vulnerability classified as critical has been found in Schneider Electric PowerChute Serial Shutdown up to 1.2.0.301. Affected is an unknown function of the file /accessdenied of the component Web Interface. The manipulation leads to improper authentication.

This vulnerability is traded as CVE-2024-10511. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-10511 | Schneider Electric PowerChute Serial Shutdown up to 1.2.0.301 Web Interface /accessdenied improper authentication (SEVD-2024-345-01)

Related Posts

CVE-2024-30686 | ROS2 Iron Irwini Privilege Escalation

CVE-2024-6183 | EZ-Suite EZ-Partner 5 Forgot Password cross site scripting

CVE-2024-8334 | master-nan Sweet-CMS up to 5f441e022b8876f07cde709c77b5be6d2f262e3f middleware/log.go LogHandler neutralization for logs

CVE-2023-51547 | WPManageNinja Fluent Support Plugin up to 1.7.6 on WordPress sql injection