Classic Buffer Overflow Vulnerability Could Cause Crash of Accutech Manager
CVE-2024-6918

7.5HIGH

Key Information:

Vendor: Schneider Electric
Status: Accutech Manager
Vendor: CVE Published:; 20 August 2024

Summary

A buffer overflow vulnerability exists within the Accutech Manager software that may lead to application crashes. This vulnerability occurs when the software processes specially crafted requests sent over TCP port 2536. By not adequately checking the size of the input data, the software may overwrite memory buffers, potentially destabilizing the application. Users and administrators of Accutech Manager should be aware of this vulnerability's implications and ensure they take appropriate actions to mitigate the risks associated with untrusted or malicious input.

Affected Version(s)

Accutech Manager Versions 2.8.0.0 and prior

References

https://download.schneider-electric.com/files?p_Doc_Ref=S...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 20, 2024
Vulnerability Reserved
Jul 19, 2024

Collectors

NVD DatabaseMitre Database