How severe is CVE-2024-10497?

CVE-2024-10497 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-10497

8.8HIGH

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges (Elevation of Privileg

Publicado: 1/17/2025Actualizado: 1/17/2025

Descripción

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges (Elevation of Privileges) when the attacker sends modified HTTPS requests to the device.

Análisis IAImpulsado por IA

Referencias

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-08&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-014-08.pdf