Classic Buffer Overflow Vulnerability Could Cause Crash of Accutech Manager
CVE-2024-6918

7.5HIGH

Key Information:

Vendor: Schneider Electric
Status: Accutech Manager
Vendor: CVE Published:; 20 August 2024

🔔 Create Schneider Electric Vulnerability Alert

What is CVE-2024-6918?

A buffer overflow vulnerability exists within the Accutech Manager software that may lead to application crashes. This vulnerability occurs when the software processes specially crafted requests sent over TCP port 2536. By not adequately checking the size of the input data, the software may overwrite memory buffers, potentially destabilizing the application. Users and administrators of Accutech Manager should be aware of this vulnerability's implications and ensure they take appropriate actions to mitigate the risks associated with untrusted or malicious input.

Affected Version(s)

Accutech Manager Versions 2.8.0.0 and prior

References

https://download.schneider-electric.com/files?p_Doc_Ref=S...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 20, 2024
Vulnerability Reserved
Jul 19, 2024