How severe is CVE-2024-28136?

CVE-2024-28136 has a CVSS v3 score of 7.8 (HIGH).

CVE-2024-28136

7.8HIGH

A local attacker with low privileges can use a command injection vulnerability to gain root privileges due to improper input validation using the OCPP Remote service.

公開日: 5/14/2024更新日: 1/24/2025

説明

A local attacker with low privileges can use a command injection vulnerability to gain root privileges due to improper input validation using the OCPP Remote service.

AI分析AIによる分析

影響を受ける製品

phoenixcontactcharx_sec-3000_firmware

phoenixcontactcharx_sec-3000

phoenixcontactcharx_sec-3050_firmware

phoenixcontactcharx_sec-3050

phoenixcontactcharx_sec-3100_firmware

phoenixcontactcharx_sec-3100

phoenixcontactcharx_sec-3150_firmware

phoenixcontactcharx_sec-3150

参照

https://cert.vde.com/en/advisories/VDE-2024-019
Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2024-019
Third Party Advisory