How severe is CVE-2024-10575?

CVE-2024-10575 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-10575

Name: ecostruxure_it_gateway
Author: schneider-electric

9.8CRITICAL

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.

发布于: 11/13/2024更新于: 11/19/2024

描述

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.

AI分析AI驱动

受影响产品

schneider-electricecostruxure_it_gateway

1.21.0.6

schneider-electricecostruxure_it_gateway

1.22.0.3

schneider-electricecostruxure_it_gateway

1.22.1.5

schneider-electricecostruxure_it_gateway

1.23.0.4

参考资料

https://download.schneider-electric.com/doc/SEVD-2024-317-04/SEVD-2024-317-04.pdf
PatchVendor Advisory