CVE-2024-24955
published 2024-05-28CVE-2024-24955: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9…
PriorityP348high8.2CVSS 3.1
AVNACLPRNUINSUCNILAH
EPSS
0.49%
38.3th percentile
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vulnerability located in firmware 1.2.10.9 of the P3-550E at offset `0xb69fc`.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| automationdirect | p3-550e | — | — |
| automationdirect | p3-550e_firmware | — | — |
CVSS provenance
nvdv3.18.2HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
cisa7.2HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
AutomationDirect Productivity PLCs
cisa_ics·2024-05-23·CVSS 7.5
[HIGH] AutomationDirect Productivity PLCs
ICS Advisory
##
AutomationDirect Productivity PLCs
Release DateMay 23, 2024
Alert CodeICSA-24-144-01
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 9.3
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: AutomationDirect
- Equipment: Productivity PLCs
- Vulnerabilities: Buffer Access with Incorrect Length Value, Out-of-bounds Write, Stack-based Buffer Overflow, Improper Access Control, Active Debug Code, Insufficient Verification of Data Authenticity
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could lead to remote code execution and denial of service.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
AutomationDirect reports the following versions of Productivity PLCs are affected:
- Productivity 3000 P3-550E CPU: F
CISA
Microsoft SharePoint Server Code Injection Vulnerability
cisa·2024-03-26·CVSS 7.2
CVE-2023-24955 [HIGH] CWE-94 Microsoft SharePoint Server Code Injection Vulnerability
Vulnerability: Microsoft SharePoint Server Code Injection Vulnerability
Affected: Microsoft SharePoint Server
Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.
Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Notes: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955; https://nvd.nist.gov/vuln/detail/CVE-2023-24955
Remediation Due Date: 2024-04-16
Suricata
ET WEB_SPECIFIC_APPS Microsoft Sharepoint BDCM Execution (CVE-2023-24955)
suricata·2024-11-06·CVSS 7.2
CVE-2023-24955 [HIGH] ET WEB_SPECIFIC_APPS Microsoft Sharepoint BDCM Execution (CVE-2023-24955)
ET WEB_SPECIFIC_APPS Microsoft Sharepoint BDCM Execution (CVE-2023-24955)
Rule: alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Microsoft Sharepoint BDCM Execution (CVE-2023-24955)"; flow:established,to_server; flowbits:isset,ET.Sharepoint.CVE-2023-24955; http.method; content:"POST"; http.uri; content:"/_vti_bin/client.svc/ProcessQuery"; fast_pattern; endswith; http.request_body; content:"Name|3d 22|ReturnParameterCollection|22|"; content:"|3a|entityfile|3a|"; content:"|3a|lsifile|3a|"; reference:cve,2023-24955; classtype:web-application-attack; sid:2057282; rev:1; metadata:affected_product Microsoft_Sharepoint, attack_target Server, tls_state TLSDecrypt, created_at 2024_11_06, cve CVE_2023_24955, deployment Perimeter, deployment Internal, deployment SSLDecrypt, confidence
No public exploits indexed.
No writeups or analysis indexed.
2024-05-28
Published