VDB

GCVE-110-NCSC-2024-244

GCVE-110-NCSC-2024-244
Advisory PublishedCVSS 9.8/10
Vulnetix · Advisory published June 11, 2024
Schneider Electric heeft kwetsbaarheden verholpen in Sage RTU apparatuur.

Weaknesses (CWE)

CWE-787Out-of-bounds WriteCWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')CWE-276Incorrect Default PermissionsCWE-252Unchecked Return ValueCWE-120Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')CWE-125Out-of-bounds Read

Risk Scores

CVSS 3.1
9.8/10
Critical · CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
schneider-electricsage_1430
schneider-electricsage_2400
schneider-electricsage_1410
schneider-electricsage_1450
schneider-electricsage_3030_magnum

References

advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory
advisory

Browse GCVE Records

73,040 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›