CVE-2024-8938 Information

Description

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could cause a potential arbitrary code execution after a successful Man-In-The-Middle attack followed by sending a crafted Modbus function call to tamper with memory area involved in memory size computation.

Reference

https://download.schneider-electric.com/doc/SEVD-2024-317-03/SEVD-2024-317-03.pdf