CVE-2024-8300 Information

Description

Dead Code vulnerability in ICONICS GENESIS64 Version 10.97.2 10.97.2 CFR1 10.97.2 CRF2 and 10.97.3 and Mitsubishi Electric GENESIS64 Version 10.97.2 10.97.2 CFR1 10.97.2 CRF2 and 10.97.3 allows a local authenticated attacker to execute a malicious code by tampering with a specially crafted DLL. This could lead to disclose tamper with destroy or delete information in the affected products or cause a denial of service (DoS) condition on the products.

Reference

https://jvn.jp/vu/JVNVU93891820 https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-010_en.pdf