How severe is CVE-2024-5558?

CVE-2024-5558 has a CVSS v3 score of 6.4 (MEDIUM).

CVE-2024-5558

6.4MEDIUM

CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account.

Veröffentlicht: 6/12/2024Aktualisiert: 11/21/2024

Beschreibung

CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account.

KI-AnalyseKI-gestützt

Betroffene Produkte

schneider-electricspacelogic_as-b_firmware

schneider-electricspacelogic_as-b

schneider-electricspacelogic_as-p_firmware

schneider-electricspacelogic_as-p

Referenzen

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-163-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-163-04.pdf
PatchVendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-163-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-163-04.pdf
PatchVendor Advisory