admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 17:21:36 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-65xx/CVE-2024-6596.json
cad-safe-bot c50e0bd75f Auto-Update: 2024-10-01T14:00:23.678635+00:00
2024-10-01 14:03:23 +00:00

195 lines
5.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-6596",
"sourceIdentifier": "info@cert.vde.com",
"published": "2024-09-10T08:15:03.350",
"lastModified": "2024-10-01T12:26:45.967",
"vulnStatus": "Analyzed",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context."
},
{
"lang": "es",
"value": "Un atacante remoto no autenticado puede ejecutar c\u00f3digo C# malicioso incluido en archivos de curva y ejecutar comandos en el contexto de los usuarios."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "info@cert.vde.com",
"type": "Primary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
]
},
"weaknesses": [
{
"source": "info@cert.vde.com",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:endress:echo_curve_viewer:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.0.0",
"matchCriteriaId": "086D71F2-A7F5-48DC-8BF2-BDDF337AFD74"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:a:endress:fieldcare_sfe500_package:*:*:*:*:*:*:*:*",
"versionEndExcluding": "1.40.1",
"matchCriteriaId": "EB7DDCFA-E0C7-401B-89B2-48A61CF28020"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:endress:field_xpert_smt79_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1ECC6E57-9FD0-4106-8C9F-C17AE827F8C8"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:endress:field_xpert_smt79:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC7856B2-75C6-40E1-B36B-5FE0F6CF1B03"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:endress:field_xpert_smt77_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "16F7E7E7-C221-4498-B286-E029CF4EAFDD"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:endress:field_xpert_smt77:-:*:*:*:*:*:*:*",
"matchCriteriaId": "22CAA382-7A0F-4C46-B7F2-873BCB2D7C16"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:endress:field_xpert_smt70_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4105E9FA-0192-4247-A876-F522EB3743C5"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:endress:field_xpert_smt70:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E2D48C9-563F-4F90-9D93-E31F746305E1"
}
]
}
]
},
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:endress:field_xpert_smt50_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9BB5DE59-7030-4CA6-8749-EADA19A374FE"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:endress:field_xpert_smt50:-:*:*:*:*:*:*:*",
"matchCriteriaId": "36A029E4-3C6E-4106-A80D-FD6B0A1CD8CA"
}
]
}
]
}
],
"references": [
{
"url": "https://cert.vde.com/en/advisories/VDE-2024-041",
"source": "info@cert.vde.com",
"tags": [
"Third Party Advisory"
]
}
]
}
Reference in New Issue View Git Blame Copy Permalink