CVE-2019-6824

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.8CRITICAL

EPSS

11.6%

top 6.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Schneider-electric Proclima Proclima Proclima ALL Versions Prior TO Version 8.0.0

Timeline

PublishedJul 15

Latest updateMay 24

Description

A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8.0.0) which allows an unauthenticated, remote attacker to execute arbitrary code on the targeted system in all versions of ProClima prior to version 8.0.0.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5proclima/proclima_all_versions_prior_to_version_8.0.0ProClima all versions prior to version 8.0.0

▶NVDschneider-electric/proclima< 8.0.0

🔴Vulnerability Details

GHSA

GHSA-9763-m8h5-r3wc: A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8↗2022-05-24

▶

CVEList

CVE-2019-6824: A CWE-119: Buffer Errors vulnerability exists in ProClima (all versions prior to version 8↗2019-07-15

▶