How severe is CVE-2024-10497?

CVE-2024-10497 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-10497

8.8HIGH

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges (Elevation of Privileg

公開日: 1/17/2025更新日: 1/17/2025

説明

CWE-639: Authorization Bypass Through User-Controlled Key vulnerability exists that could allow an authorized attacker to modify values outside those defined by their privileges (Elevation of Privileges) when the attacker sends modified HTTPS requests to the device.

AI分析AIによる分析

参照

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-08&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-014-08.pdf