CVE-2024-8937 Information

Description

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in the authentication process.

Reference

https://download.schneider-electric.com/doc/SEVD-2024-317-03/SEVD-2024-317-03.pdf