cbcvebase.
CVE-2024-10776
published 2024-12-06

CVE-2024-10776: Lua apps can be deployed, removed, started, reloaded or stopped without authorization via AppManager. This allows an attacker to remove legitimate apps…

PriorityP343high8.2CVSS 3.1
AVNACLPRNUINSUCNILAH
EPSS
0.47%
37.3th percentile
Lua apps can be deployed, removed, started, reloaded or stopped without authorization via AppManager. This allows an attacker to remove legitimate apps creating a DoS attack, read and write files or load apps that use all features of the product available to a customer.

Affected

2 ranges
VendorProductVersion rangeFixed in
sick_agsick_inspectorp61x< <5.0.0<5.0.0
sick_agsick_inspectorp62x< <5.0.0<5.0.0
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.