Man-In-The-Middle Attack Could Lead to Loss of Confidentiality of Controller Memory
CVE-2024-8936

Currently unrated

Key Information:

Vendor: Unknown
Vendor: CVE Published:; 13 November 2024

What is CVE-2024-8936?

CWE-20: Improper Input Validation vulnerability exists that could lead to loss of confidentiality of controller memory after a successful Man-In-The-Middle attack followed by sending a crafted Modbus function call used to tamper with memory.

References

https://download.schneider-electric.com/doc/SEVD-2024-317...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2024

Unknown

What is CVE-2024-8936?

References

Timeline