Automationdirect P3-550E vulnerabilities
15 known vulnerabilities affecting automationdirect/p3-550e.
Total CVEs
15
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL5HIGH10
Vulnerabilities
Page 1 of 1
CVE-2024-21785P2CRITICALCVSS 9.8v1.2.10.92024-05-28
CVE-2024-21785 [CRITICAL] CWE-489 CVE-2024-21785: A leftover debug code vulnerability exists in the Telnet Diagnostic Interface functionality of Autom
A leftover debug code vulnerability exists in the Telnet Diagnostic Interface functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted series of network requests can lead to unauthorized access. An attacker can send a sequence of requests to trigger this vulnerability.
nvd
CVE-2024-22187P2CRITICALCVSS 9.1v1.2.10.92024-05-28
CVE-2024-22187 [CRITICAL] CWE-284 CVE-2024-22187: A write-what-where vulnerability exists in the Programming Software Connection Remote Memory Diagnos
A write-what-where vulnerability exists in the Programming Software Connection Remote Memory Diagnostics functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to an arbitrary write. An attacker can send an unauthenticated packet to trigger this vulnerability.
nvd
CVE-2024-24963P3CRITICALCVSS 9.8v1.2.10.92024-05-28
CVE-2024-24963 [CRITICAL] CWE-121 CVE-2024-24963: A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect
A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.This CVE tracks the stack-based buffer over
nvd
CVE-2024-24962P3CRITICALCVSS 9.8v1.2.10.92024-05-28
CVE-2024-24962 [CRITICAL] CWE-121 CVE-2024-24962: A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect
A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.This CVE tracks the stack-based buffer over
nvd
CVE-2024-23601P3CRITICALCVSS 9.8v1.2.10.92024-05-28
CVE-2024-23601 [CRITICAL] CWE-345 CVE-2024-23601: A code injection vulnerability exists in the scan_lib.bin functionality of AutomationDirect P3-550E
A code injection vulnerability exists in the scan_lib.bin functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted scan_lib.bin can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
nvd
CVE-2024-24958P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24958 [HIGH] CWE-787 CVE-2024-24958: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-24959P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24959 [HIGH] CWE-787 CVE-2024-24959: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-24956P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24956 [HIGH] CWE-787 CVE-2024-24956: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-24954P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24954 [HIGH] CWE-787 CVE-2024-24954: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-24957P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24957 [HIGH] CWE-787 CVE-2024-24957: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-24955P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24955 [HIGH] CWE-787 CVE-2024-24955: Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem
Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these vulnerabilities.This CVE tracks the arbitrary null-byte write vuln
nvd
CVE-2024-23315P3HIGHCVSS 7.5v1.2.10.92024-05-28
CVE-2024-23315 [HIGH] CWE-284 CVE-2024-23315: A read-what-where vulnerability exists in the Programming Software Connection IMM 01A1 Memory Read f
A read-what-where vulnerability exists in the Programming Software Connection IMM 01A1 Memory Read functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can send an unauthenticated packet to trigger this vulnerability.
nvd
CVE-2024-24947P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24947 [HIGH] CWE-787 CVE-2024-24947: A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir fun
A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This CVE tracks the heap corruption that occurs at offset `0
nvd
CVE-2024-24946P3HIGHCVSS 8.2v1.2.10.92024-05-28
CVE-2024-24946 [HIGH] CWE-787 CVE-2024-24946: A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir fun
A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This CVE tracks the heap corruption that occurs at offset `0
nvd
CVE-2024-24851P3HIGHCVSS 7.5v1.2.10.92024-05-28
CVE-2024-24851 [HIGH] CWE-805 CVE-2024-24851: A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn func
A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.
nvd