How severe is CVE-2024-5558?

CVE-2024-5558 has a CVSS v3 score of 6.4 (MEDIUM).

CVE-2024-5558

6.4MEDIUM

CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account.

发布于: 6/12/2024更新于: 11/21/2024

描述

CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability exists that could cause escalation of privileges when an attacker abuses a limited admin account.

AI分析AI驱动

受影响产品

schneider-electricspacelogic_as-b_firmware

schneider-electricspacelogic_as-b

schneider-electricspacelogic_as-p_firmware

schneider-electricspacelogic_as-p

参考资料

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-163-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-163-04.pdf
PatchVendor Advisory
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-163-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-163-04.pdf
PatchVendor Advisory