How severe is CVE-2024-28136?

CVE-2024-28136 has a CVSS v3 score of 7.8 (HIGH).

CVE-2024-28136

7.8HIGH

A local attacker with low privileges can use a command injection vulnerability to gain root privileges due to improper input validation using the OCPP Remote service.

发布于: 5/14/2024更新于: 1/24/2025

描述

A local attacker with low privileges can use a command injection vulnerability to gain root privileges due to improper input validation using the OCPP Remote service.

AI分析AI驱动

受影响产品

phoenixcontactcharx_sec-3000_firmware

phoenixcontactcharx_sec-3000

phoenixcontactcharx_sec-3050_firmware

phoenixcontactcharx_sec-3050

phoenixcontactcharx_sec-3100_firmware

phoenixcontactcharx_sec-3100

phoenixcontactcharx_sec-3150_firmware

phoenixcontactcharx_sec-3150

参考资料

https://cert.vde.com/en/advisories/VDE-2024-019
Third Party Advisory
https://cert.vde.com/en/advisories/VDE-2024-019
Third Party Advisory