How severe is CVE-2024-8531?

CVE-2024-8531 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-8531

7.2HIGH

CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could compromise the Data Center Expert software when an upgrade bundle is manipulated to include arbitrary bash scr

Опубликовано: 10/11/2024Обновлено: 10/15/2024

Описание

CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could compromise the Data Center Expert software when an upgrade bundle is manipulated to include arbitrary bash scripts that are executed as root.

ИИ-АнализНа базе ИИ

Ссылки

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-282-01.pdf