Lucene search

IcscertCVELIST:CVE-2024-5597

HistoryJun 10, 2024 - 4:53 p.m.

CVE-2024-5597 Fuji Electric Monitouch V-SFT Type Confusion

2024-06-1016:53:50

CWE-843

icscert

www.cve.org

fuji electric

monitouch

v-sft

type confusion

cve-2024-5597

vulnerable

code execution

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.5 High

CVSS4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

PASSIVE

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/SC:N/VI:H/SI:N/VA:H/SA:N

0.001 Low

EPSS

Percentile

50.9%

JSON

Fuji Electric Monitouch V-SFT is vulnerable to a type confusion, which could cause a crash or code execution.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Monitouch V-SFT",
    "vendor": "Fuji Electric",
    "versions": [
      {
        "lessThan": "6.2.3.0",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

References

www.cisa.gov/news-events/ics-advisories/icsa-24-151-02

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8.5 High

CVSS4

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

PASSIVE

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/SC:N/VI:H/SI:N/VA:H/SA:N

0.001 Low

EPSS

Percentile

50.9%

JSON

Related for CVELIST:CVE-2024-5597