cve/2024/CVE-2024-10498.md

### [CVE-2024-10498](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-10498)
![](https://img.shields.io/static/v1?label=Product&message=PowerLogic%20HDPM6000&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=Versions%20v0.62.7%20and%20prior%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-119%20Improper%20Restriction%20of%20Operations%20within%20the%20Bounds%20of%20a%20Memory%20Buffer&color=brightgreen)

### Description

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists thatcould allow an unauthorized attacker to modify configuration values outside of the normal range when theattacker sends specific Modbus write packets to the device which could result in invalid data or loss of webinterface functionality.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds