How severe is CVE-2024-10575?

CVE-2024-10575 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-10575

Name: ecostruxure_it_gateway
Author: schneider-electric

9.8CRITICAL

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.

Publicado: 11/13/2024Actualizado: 11/19/2024

Descripción

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.

Análisis IAImpulsado por IA

Productos Afectados

schneider-electricecostruxure_it_gateway

1.21.0.6

schneider-electricecostruxure_it_gateway

1.22.0.3

schneider-electricecostruxure_it_gateway

1.22.1.5

schneider-electricecostruxure_it_gateway

1.23.0.4

Referencias

https://download.schneider-electric.com/doc/SEVD-2024-317-04/SEVD-2024-317-04.pdf
PatchVendor Advisory