CVE-2024-12372
Rockwell Automation PowerMonitor™ 1000 Denial of Service
Vexday Risk Score
28Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 9.3EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
18 dez 2024Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A denial-of-service and possible remote code execution vulnerability exists in the Rockwell Automation Power Monitor 1000. The vulnerability results in corruption of the heap memory which may compromise the integrity of the system, potentially allowing for remote code execution or a denial-of-service attack.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Rockwell Automation · PM1k 1408-BC3A-485Rockwell Automation · PM1k 1408-BC3A-ENTRockwell Automation · PM1k 1408-EM1A-485Rockwell Automation · PM1k 1408-EM1A-ENTRockwell Automation · PM1k 1408-EM2A-485Rockwell Automation · PM1k 1408-EM2A-ENTRockwell Automation · PM1k 1408-EM3A-485Rockwell Automation · PM1k 1408-EM3A-ENTRockwell Automation · PM1k 1408-TR1A-485Rockwell Automation · PM1k 1408-TR1A-ENTRockwell Automation · PM1k 1408-TR2A-485Rockwell Automation · PM1k 1408-TR2A-ENTRockwell Automation · PM1k 1408-TS3A-485Rockwell Automation · PM1k 1408-TS3A-ENTQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →