Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2024-2658 (GCVE-0-2024-2658)
Vulnerability from cvelistv5 – Published: 2025-01-30 17:11 – Updated: 2025-01-30 19:22
VLAI?
EPSS
Title
Local privilege escalation in FlexNet Publisher
Summary
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.
Severity ?
CWE
- CWE-427 - Uncontrolled Search Path Element
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Flexera | FlexNet Publisher |
Affected:
0 , < 2024 R1 (11.19.6.0)
(custom)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-2658",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-01-30T19:22:23.235896Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-01-30T19:22:27.067Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "FlexNet Publisher",
"vendor": "Flexera",
"versions": [
{
"lessThan": "2024 R1 (11.19.6.0)",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cspan style=\"background-color: rgb(250, 250, 250);\"\u003eA misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u0026nbsp;2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.\u003c/span\u003e\u003cbr\u003e"
}
],
"value": "A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u00a02024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges."
}
],
"impacts": [
{
"capecId": "CAPEC-233",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-233 Privilege Escalation"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 8.5,
"baseSeverity": "HIGH",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-427",
"description": "CWE-427 Uncontrolled Search Path Element",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-01-30T17:11:22.139Z",
"orgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"shortName": "flexera"
},
"references": [
{
"tags": [
"vendor-advisory"
],
"url": "https://community.flexera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue"
},
{
"tags": [
"third-party-advisory"
],
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-359/"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Local privilege escalation in FlexNet Publisher",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "44d08088-2bea-4760-83a6-1e9be26b15ab",
"assignerShortName": "flexera",
"cveId": "CVE-2024-2658",
"datePublished": "2025-01-30T17:11:22.139Z",
"dateReserved": "2024-03-19T17:20:18.300Z",
"dateUpdated": "2025-01-30T19:22:27.067Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-2658\",\"sourceIdentifier\":\"PSIRT-CNA@flexerasoftware.com\",\"published\":\"2025-01-30T17:15:17.670\",\"lastModified\":\"2025-01-30T17:15:17.670\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u00a02024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.\"},{\"lang\":\"es\",\"value\":\"Una configuraci\u00f3n incorrecta en lmadmin.exe de las versiones de FlexNet Publisher anteriores a 2024 R1 (11.19.6.0) permite que el archivo de configuraci\u00f3n de OpenSSL se cargue desde un directorio inexistente. Un usuario no autorizado, autenticado localmente y con privilegios bajos puede crear el directorio y cargar un archivo openssl.conf manipulado especial, lo que lleva a la ejecuci\u00f3n de una DLL maliciosa (Dynamic-Link librer\u00eda) con privilegios elevados.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"HIGH\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"PSIRT-CNA@flexerasoftware.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-427\"}]}],\"references\":[{\"url\":\"https://community.flexera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"},{\"url\":\"https://www.zerodayinitiative.com/advisories/ZDI-24-359/\",\"source\":\"PSIRT-CNA@flexerasoftware.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-2658\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-01-30T19:22:23.235896Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-01-30T19:20:29.088Z\"}}], \"cna\": {\"title\": \"Local privilege escalation in FlexNet Publisher\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-233\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-233 Privilege Escalation\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 8.5, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"HIGH\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"HIGH\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Flexera\", \"product\": \"FlexNet Publisher\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2024 R1 (11.19.6.0)\", \"versionType\": \"custom\"}], \"platforms\": [\"Windows\"], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://community.flexera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.zerodayinitiative.com/advisories/ZDI-24-359/\", \"tags\": [\"third-party-advisory\"]}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\\u00a02024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cspan style=\\\"background-color: rgb(250, 250, 250);\\\"\u003eA misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u0026nbsp;2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.\u003c/span\u003e\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-427\", \"description\": \"CWE-427 Uncontrolled Search Path Element\"}]}], \"providerMetadata\": {\"orgId\": \"44d08088-2bea-4760-83a6-1e9be26b15ab\", \"shortName\": \"flexera\", \"dateUpdated\": \"2025-01-30T17:11:22.139Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2024-2658\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-01-30T19:22:27.067Z\", \"dateReserved\": \"2024-03-19T17:20:18.300Z\", \"assignerOrgId\": \"44d08088-2bea-4760-83a6-1e9be26b15ab\", \"datePublished\": \"2025-01-30T17:11:22.139Z\", \"assignerShortName\": \"flexera\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
ICSA-25-037-02
Vulnerability from csaf_cisa - Published: 2025-02-06 07:00 - Updated: 2025-10-23 06:00Summary
Schneider Electric EcoStruxure (Update C)
Notes
Legal Notice and Terms of Use
This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).
Risk evaluation
Successful exploitation of this vulnerability allows for local privilege escalation, which could lead to the execution of a malicious DLL.
Critical infrastructure sectors
Commercial Facilities, Energy, Food and Agriculture, Government Services and Facilities, Transportation Systems, Water and Wastewater Systems
Countries/areas deployed
Worldwide
Company headquarters location
France
Recommended Practices
CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:
Recommended Practices
Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.
Recommended Practices
Locate control system networks and remote devices behind firewalls and isolating them from business networks.
Recommended Practices
When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as the connected devices.CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices
CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices
CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices
Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices
Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices
No known public exploitation specifically targeting this vulnerability has been reported to CISA at this time. This vulnerability is not exploitable remotely.
{
"document": {
"acknowledgments": [
{
"names": [
"Xavier DANEST"
],
"organization": "Trend Micro Zero Day Initiative",
"summary": "reporting this vulnerability to Revenera PSIRT"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
"title": "Legal Notice and Terms of Use"
},
{
"category": "summary",
"text": "Successful exploitation of this vulnerability allows for local privilege escalation, which could lead to the execution of a malicious DLL.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Commercial Facilities, Energy, Food and Agriculture, Government Services and Facilities, Transportation Systems, Water and Wastewater Systems",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "France",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, ensuring they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolating them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most current version available. Also recognize VPN is only as secure as the connected devices.CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "No known public exploitation specifically targeting this vulnerability has been reported to CISA at this time. This vulnerability is not exploitable remotely.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-25-037-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-037-02.json"
},
{
"category": "self",
"summary": "ICSA Advisory ICSA-25-037-02 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-037-02"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/secure-our-world/teach-employees-avoid-phishing"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/avoiding-social-engineering-and-phishing-attacks"
}
],
"title": "Schneider Electric EcoStruxure (Update C)",
"tracking": {
"current_release_date": "2025-10-23T06:00:00.000000Z",
"generator": {
"date": "2025-10-23T16:37:38.725846Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-25-037-02",
"initial_release_date": "2025-02-06T07:00:00.000000Z",
"revision_history": [
{
"date": "2025-02-06T07:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
},
{
"date": "2025-03-06T07:00:00.000000Z",
"legacy_version": "Update A",
"number": "2",
"summary": "Update A - A remediation is available for EcoStruxure Process Expert. The EcoStruxure Process Expert for AVEVA System Platform offer is added to the Affected Products."
},
{
"date": "2025-07-15T06:00:00.000000Z",
"legacy_version": "Update B",
"number": "3",
"summary": "Update B - Pro-face BLUE is added to the \"Affected Products\" section. Remediations are now available for EcoStruxure Control Expert, EcoStruxure Operator Terminal Expert and Pro-face BLUE offers. Updated the link to the fix of EcoStruxure Control Expert Asset Link offer."
},
{
"date": "2025-10-23T06:00:00.000000Z",
"legacy_version": "Update C",
"number": "4",
"summary": "Update C - Remediations are now available for Zelio Soft 2 and EcoStruxure OPC UA Server Expert offers."
}
],
"status": "final",
"version": "4"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV16.2",
"product": {
"name": "Schneider Electric EcoStruxure Control Expert: \u003cV16.2",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "EcoStruxure Control Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2023_V4.8.0.5715",
"product": {
"name": "Schneider Electric EcoStruxure Process Expert: \u003c2023_V4.8.0.5715",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "EcoStruxure Process Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure Process Expert for AVEVA System Platform: vers:all/*",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "EcoStruxure Process Expert for AVEVA System Platform"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cSV2.01_SP3",
"product": {
"name": "Schneider Electric EcoStruxure OPC UA Server Expert: \u003cSV2.01_SP3",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "EcoStruxure OPC UA Server Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV4.0_SP1",
"product": {
"name": "Schneider Electric EcoStruxure Control Expert Asset Link: \u003cV4.0_SP1",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "EcoStruxure Control Expert Asset Link"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure Machine SCADA Expert Asset Link: vers:all/*",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "EcoStruxure Machine SCADA Expert Asset Link"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.0.18",
"product": {
"name": "Schneider Electric EcoStruxure Architecture Builder: \u003cV7.0.18",
"product_id": "CSAFPID-0007"
}
}
],
"category": "product_name",
"name": "EcoStruxure Architecture Builder"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV4.0",
"product": {
"name": "Schneider Electric EcoStruxure Operator Terminal Expert: \u003cV4.0",
"product_id": "CSAFPID-0008"
}
}
],
"category": "product_name",
"name": "EcoStruxure Operator Terminal Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV4.0",
"product": {
"name": "Schneider Electric Pro-face BLUE: \u003cV4.0",
"product_id": "CSAFPID-0009"
}
}
],
"category": "product_name",
"name": "Pro-face BLUE"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV6.3_SP1_HF1",
"product": {
"name": "Schneider Electric Vijeo Designer: \u003cV6.3_SP1_HF1",
"product_id": "CSAFPID-0010"
}
}
],
"category": "product_name",
"name": "Vijeo Designer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure Machine Expert including EcoStruxure Machine Expert Safety: vers:all/*",
"product_id": "CSAFPID-0011"
}
}
],
"category": "product_name",
"name": "EcoStruxure Machine Expert including EcoStruxure Machine Expert Safety"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure Machine Expert Twin: vers:all/*",
"product_id": "CSAFPID-0012"
}
}
],
"category": "product_name",
"name": "EcoStruxure Machine Expert Twin"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.4.3",
"product": {
"name": "Schneider Electric Zelio Soft 2: \u003cV5.4.3",
"product_id": "CSAFPID-0013"
}
}
],
"category": "product_name",
"name": "Zelio Soft 2"
}
],
"category": "vendor",
"name": "Schneider Electric"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-2658",
"cwe": {
"id": "CWE-427",
"name": "Uncontrolled Search Path Element"
},
"notes": [
{
"category": "summary",
"text": "A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2658"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Schneider Electric recommends that users of the following products follow these remediation actions:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "vendor_fix",
"details": "EcoStruxure Control Expert: Versions prior to V16.2. Version V16.2 of EcoStruxure Control Expert includes a fix for this vulnerability and is available for download here. Reboot the computer after installation is completed.",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://www.se.com/ww/en/product-range/548-ecostruxure-control-expert-unity-pro/"
},
{
"category": "vendor_fix",
"details": "EcoStruxure Architecture Builder: Versions prior to V7.0.18. Version V7.0.18 of EcoStruxure Architecture Builder includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0007"
],
"url": "https://www.se.com/ww/en/product-range/195445393-ecostruxure-architecture-builder/-software-and-firmware"
},
{
"category": "vendor_fix",
"details": "EcoStruxure Control Expert Asset Link: Versions prior to V4.0 SP1. Version V4.0 SP1 of EcoStruxure Control Expert Asset Link includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0005"
],
"url": "https://www.se.com/ww/en/download/document/ECALV40SP1/"
},
{
"category": "vendor_fix",
"details": "Vijeo Designer: Version prior to V6.3 SP1 HF1. Version V6.3 SP1 HF1 of Vijeo Designer includes a fix for this vulnerability. Please contact your Schneider Electric Customer Support to get Vijeo Designer version V6.3 SP1 HF1 software.",
"product_ids": [
"CSAFPID-0010"
],
"url": "https://www.se.com/ww/en/work/support/country-selector/contact-us.jsp"
},
{
"category": "vendor_fix",
"details": "EcoStruxure Process Expert: Versions 2023 prior to v4.8.0.5115. Version 2023 (v4.8.0.5715) of EcoStruxure Process Expert includes a fix for this vulnerability and is available for download here. Uninstall previous version 2023 (v4.8.0.5115) before installing Version 2023 (v4.8.0.5715). Version string can be found on the engineering server console.",
"product_ids": [
"CSAFPID-0002"
],
"url": "https://www.se.com/ww/en/product-range/65406-ecostruxure-process-expert/?subNodeId=12367182569en_WW#overview"
},
{
"category": "vendor_fix",
"details": "EcoStruxure Process Expert: Versions prior to 2023. Version 2023 (v4.8.0.5715) of EcoStruxure Process Expert includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0002"
],
"url": "https://www.se.com/ww/en/product-country-selector/?pageType=product-range\u0026sourceId=65406"
},
{
"category": "vendor_fix",
"details": "EcoStruxure Operator Terminal Expert: Versions prior to v4.0. Version 4.0 of EcoStruxure Operator Terminal Expert includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0008"
],
"url": "https://www.se.com/ww/en/product-range/62621-ecostruxure-operator-terminal-expert/#software-and-firmware"
},
{
"category": "vendor_fix",
"details": "Pro-face BLUE: Versions prior to v4.0. Version 4.0 of Pro-face BLUE includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0009"
],
"url": "https://www.proface.com/en/hmi_design_studio/blue/page/installer"
},
{
"category": "vendor_fix",
"details": "Zelio Soft 2: Version 5.4.3 of Zelio Soft 2 includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0013"
],
"url": "https://www.se.com/ww/en/product-range/542-zelio-soft/#software-and-firmware"
},
{
"category": "vendor_fix",
"details": "EcoStruxure OPC UA Server Expert: Version SV2.01SP3 of EcoStruxure OPC UA Server Expert includes a fix for this vulnerability and is available for download here.",
"product_ids": [
"CSAFPID-0004"
],
"url": "https://www.se.com/ww/en/product-range/66388-ecostruxure-opc-ua-server-expert/#software-and-firmware"
},
{
"category": "mitigation",
"details": "Customers should use appropriate patching methodologies when applying these patches to their systems. We strongly recommend the use of back-ups and evaluating the impact of these patches in a Test and Development environment or on an offline infrastructure. Contact Schneider Electric\u0027s Customer Care Center if you need assistance removing a patch.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
],
"url": "https://www.se.com/us/en/work/support/"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately apply the followingmitigations to reduce the risk of exploit:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Schneider Electric is establishing a remediation plan for all future versions of the affected products that will include a fix for this vulnerability.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "vendor_fix",
"details": "EcoStruxure Process Expert for AVEVA System Platform: All versions",
"product_ids": [
"CSAFPID-0002",
"CSAFPID-0003"
]
},
{
"category": "mitigation",
"details": "EcoStruxure Machine SCADA Expert - Asset Link: All versions",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "vendor_fix",
"details": "EcoStruxure Machine Expert including EcoStruxure Machine Expert Safety: All versions",
"product_ids": [
"CSAFPID-0011"
]
},
{
"category": "vendor_fix",
"details": "EcoStruxure Machine Expert Twin: All versions",
"product_ids": [
"CSAFPID-0012"
]
},
{
"category": "mitigation",
"details": "The document will be updated when the remediation is available. Until then, customers should immediately apply the following mitigations to reduce the risk of exploit:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Limit authenticated user access to the workstation and implement existing User Account Control practices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Follow workstation, network and site-hardening guidelines in the Recommended Cybersecurity Best Practices guide available for download here.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
],
"url": "https://www.se.com/ww/en/download/document/7EN52-0390/?ssr=true"
},
{
"category": "mitigation",
"details": "To ensure you are informed of all updates, including details on affected products and remediation plans, subscribe to Schneider Electric\u0027s security notification service here.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
],
"url": "https://www.se.com/en/work/support/cybersecurity/security-notifications.jsp"
},
{
"category": "mitigation",
"details": "General Security Recommendations",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Schneider Electric strongly recommends the following industry cybersecurity best practices:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Place all controllers in locked cabinets and never leave them in the \"Program\" mode.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Never connect programming software to any network other than the network intended for that device.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
},
{
"category": "mitigation",
"details": "For more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
],
"url": "https://www.se.com/us/en/download/document/7EN52-0390/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013"
]
}
]
}
]
}
GSD-2024-2658
Vulnerability from gsd - Updated: 2024-04-02 05:02Details
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Aliases
{
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2024-2658"
],
"id": "GSD-2024-2658",
"modified": "2024-04-02T05:02:53.200364Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2024-2658",
"STATE": "RESERVED"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
}
]
}
}
}
}
CERTFR-2025-AVI-0034
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Schneider Electric. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Schneider Electric | N/A | BMXNOE0110 toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | Modicon M580/Quantum communication modules BMXCRA BMXCRA31200 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | EcoStruxureTM Control Expert Asset Link versions antérieures à 4.0 SP1 pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon Quantum communication modules 140CRA 140CRA31200 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | Modicon M340 processors (part numbers BMXP34*) toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | EcoStruxureTM Machine SCADA Expert Asset Link toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Pro-face GP-Pro EX toutes versions pour la vulnérabilité CVE-2024-12399 | ||
| Schneider Electric | N/A | BMENOR2200H toutes versions pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | EcoStruxure OPC UA Server Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | EcoStruxureTM Process Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Pro-face Remote HMI toutes versions pour la vulnérabilité CVE-2024-12399 | ||
| Schneider Electric | N/A | EcoStruxureTM Control Expert versions antérieures à 16.1 | ||
| Schneider Electric | N/A | EcoStruxure Machine Expert including EcoStruxureTM Machine Expert Safety toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | EVLink Pro AC versions antérieures à 1.3.10 | ||
| Schneider Electric | N/A | Modicon M580 CPU (part numbers BMEP* et BMEH*, excluding M580 CPU Safety) versions antérieures à 4.30 pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | EcoStruxure Machine Expert Twin toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | BMXNOR0200H versions antérieures à 1.70IR26 | ||
| Schneider Electric | N/A | EcoStruxure Operator Terminal Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580/Quantum communication modules BMXCRA BMXCRA31210 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | BMXNOE0100 toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | Vijeo Designer toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580 CPU Safety (part numbers BMEP58*S et BMEH58*S) versions antérieures à 4.21 pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | Zelio Soft 2 toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580 communication modules BMENOC BMENOC0321 versions antérieures à 1.10 | ||
| Schneider Electric | N/A | EcoStruxure Architecture Builder versions antérieures à 7.0.18 | ||
| Schneider Electric | N/A | Modicon Quantum communication modules 140CRA 140CRA31908 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | Modicon M580 communication modules BMECRA BMECRA31210 toutes versions pour la vulnérabilité CVE-2021-29999 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BMXNOE0110 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580/Quantum communication modules BMXCRA BMXCRA31200 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Control Expert Asset Link versions ant\u00e9rieures \u00e0 4.0 SP1 pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon Quantum communication modules 140CRA 140CRA31200 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M340 processors (part numbers BMXP34*) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Machine SCADA Expert Asset Link toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Pro-face GP-Pro EX toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12399",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMENOR2200H toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure OPC UA Server Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Process Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Pro-face Remote HMI toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12399",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Control Expert versions ant\u00e9rieures \u00e0 16.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Machine Expert including EcoStruxureTM Machine Expert Safety toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EVLink Pro AC versions ant\u00e9rieures \u00e0 1.3.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 CPU (part numbers BMEP* et BMEH*, excluding M580 CPU Safety) versions ant\u00e9rieures \u00e0 4.30 pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Machine Expert Twin toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMXNOR0200H versions ant\u00e9rieures \u00e0 1.70IR26",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Operator Terminal Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580/Quantum communication modules BMXCRA BMXCRA31210 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMXNOE0100 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Vijeo Designer toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 CPU Safety (part numbers BMEP58*S et BMEH58*S) versions ant\u00e9rieures \u00e0 4.21 pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Zelio Soft 2 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 communication modules BMENOC BMENOC0321 versions ant\u00e9rieures \u00e0 1.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Architecture Builder versions ant\u00e9rieures \u00e0 7.0.18",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon Quantum communication modules 140CRA 140CRA31908 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 communication modules BMECRA BMECRA31210 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-12399",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12399"
},
{
"name": "CVE-2024-11139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11139"
},
{
"name": "CVE-2021-29999",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29999"
},
{
"name": "CVE-2024-11425",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11425"
},
{
"name": "CVE-2024-2658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2658"
},
{
"name": "CVE-2024-12142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12142"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0034",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Schneider Electric. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider Electric",
"vendor_advisories": [
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-01",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-01.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-02",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-02\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-02.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-09",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-09\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-09.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-03",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-03\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-03.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-07",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-07\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-07.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-05",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-05\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-05.pdf"
}
]
}
CERTFR-2025-AVI-0034
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits Schneider Electric. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Schneider Electric | N/A | BMXNOE0110 toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | Modicon M580/Quantum communication modules BMXCRA BMXCRA31200 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | EcoStruxureTM Control Expert Asset Link versions antérieures à 4.0 SP1 pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon Quantum communication modules 140CRA 140CRA31200 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | Modicon M340 processors (part numbers BMXP34*) toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | EcoStruxureTM Machine SCADA Expert Asset Link toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Pro-face GP-Pro EX toutes versions pour la vulnérabilité CVE-2024-12399 | ||
| Schneider Electric | N/A | BMENOR2200H toutes versions pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | EcoStruxure OPC UA Server Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | EcoStruxureTM Process Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Pro-face Remote HMI toutes versions pour la vulnérabilité CVE-2024-12399 | ||
| Schneider Electric | N/A | EcoStruxureTM Control Expert versions antérieures à 16.1 | ||
| Schneider Electric | N/A | EcoStruxure Machine Expert including EcoStruxureTM Machine Expert Safety toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | EVLink Pro AC versions antérieures à 1.3.10 | ||
| Schneider Electric | N/A | Modicon M580 CPU (part numbers BMEP* et BMEH*, excluding M580 CPU Safety) versions antérieures à 4.30 pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | EcoStruxure Machine Expert Twin toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | BMXNOR0200H versions antérieures à 1.70IR26 | ||
| Schneider Electric | N/A | EcoStruxure Operator Terminal Expert toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580/Quantum communication modules BMXCRA BMXCRA31210 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | BMXNOE0100 toutes versions pour la vulnérabilité CVE-2024-12142 | ||
| Schneider Electric | N/A | Vijeo Designer toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580 CPU Safety (part numbers BMEP58*S et BMEH58*S) versions antérieures à 4.21 pour la vulnérabilité CVE-2024-11425 | ||
| Schneider Electric | N/A | Zelio Soft 2 toutes versions pour la vulnérabilité CVE-2024-2658 | ||
| Schneider Electric | N/A | Modicon M580 communication modules BMENOC BMENOC0321 versions antérieures à 1.10 | ||
| Schneider Electric | N/A | EcoStruxure Architecture Builder versions antérieures à 7.0.18 | ||
| Schneider Electric | N/A | Modicon Quantum communication modules 140CRA 140CRA31908 toutes versions pour la vulnérabilité CVE-2021-29999 | ||
| Schneider Electric | N/A | Modicon M580 communication modules BMECRA BMECRA31210 toutes versions pour la vulnérabilité CVE-2021-29999 |
References
| Title | Publication Time | Tags | ||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "BMXNOE0110 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580/Quantum communication modules BMXCRA BMXCRA31200 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Control Expert Asset Link versions ant\u00e9rieures \u00e0 4.0 SP1 pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon Quantum communication modules 140CRA 140CRA31200 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M340 processors (part numbers BMXP34*) toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Machine SCADA Expert Asset Link toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Pro-face GP-Pro EX toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12399",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMENOR2200H toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure OPC UA Server Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Process Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Pro-face Remote HMI toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12399",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxureTM Control Expert versions ant\u00e9rieures \u00e0 16.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Machine Expert including EcoStruxureTM Machine Expert Safety toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EVLink Pro AC versions ant\u00e9rieures \u00e0 1.3.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 CPU (part numbers BMEP* et BMEH*, excluding M580 CPU Safety) versions ant\u00e9rieures \u00e0 4.30 pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Machine Expert Twin toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMXNOR0200H versions ant\u00e9rieures \u00e0 1.70IR26",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Operator Terminal Expert toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580/Quantum communication modules BMXCRA BMXCRA31210 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "BMXNOE0100 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-12142",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Vijeo Designer toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 CPU Safety (part numbers BMEP58*S et BMEH58*S) versions ant\u00e9rieures \u00e0 4.21 pour la vuln\u00e9rabilit\u00e9 CVE-2024-11425",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Zelio Soft 2 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2024-2658",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 communication modules BMENOC BMENOC0321 versions ant\u00e9rieures \u00e0 1.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "EcoStruxure Architecture Builder versions ant\u00e9rieures \u00e0 7.0.18",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon Quantum communication modules 140CRA 140CRA31908 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
},
{
"description": "Modicon M580 communication modules BMECRA BMECRA31210 toutes versions pour la vuln\u00e9rabilit\u00e9 CVE-2021-29999",
"product": {
"name": "N/A",
"vendor": {
"name": "Schneider Electric",
"scada": true
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-12399",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12399"
},
{
"name": "CVE-2024-11139",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11139"
},
{
"name": "CVE-2021-29999",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-29999"
},
{
"name": "CVE-2024-11425",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11425"
},
{
"name": "CVE-2024-2658",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2658"
},
{
"name": "CVE-2024-12142",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12142"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0034",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-01-15T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Schneider Electric. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Schneider Electric",
"vendor_advisories": [
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-01",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-01\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-01.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-02",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-02\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-02.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-09",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-09\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-09.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-03",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-03\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-03.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-07",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-07\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-07.pdf"
},
{
"published_at": "2025-01-14",
"title": "Bulletin de s\u00e9curit\u00e9 Schneider Electric SEVD-2025-014-05",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-05\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-05.pdf"
}
]
}
CVE-2024-2658
Vulnerability from csaf_se - Published: 2025-01-14 07:00 - Updated: 2025-11-11 08:00Summary
FlexNet Publisher Vulnerability
Notes
General Security Recommendations
We strongly recommend the following industry cybersecurity best practices.
https://www.se.com/us/en/download/document/7EN52-0390/
* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.
* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.
* Place all controllers in locked cabinets and never leave them in the “Program” mode.
* Never connect programming software to any network other than the network intended for that device.
* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.
* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.
* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.
* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.
For more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document.
For More Information
This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.
Customers should use appropriate patching methodologies when applying these patches to their systems. We
strongly recommend the use of back-ups and evaluating the impact of these patches in a Test and
Development environment or on an offline infrastructure. Contact Schneider Electric’s Customer Care Center if
you need assistance removing a patch.
For further information related to cybersecurity in Schneider Electric’s products, visit the company’s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp
LEGAL DISCLAIMER
THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS “NOTIFICATION”) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN “AS-IS” BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION
About Schneider Electric
Schneider's purpose is to create Impact by empowering all to make the most of our energy and resources, bridging progress and
sustainability for all. We call this Life Is On.
Our mission is to be the trusted partner in Sustainability and Efficiency.
We are a global industrial technology leader bringing world-leading expertise in electrification, automation and digitization to smart
industries, resilient infrastructure, future-proof data centers, intelligent buildings, and intuitive homes. Anchored by our deep
domain expertise, we provide integrated end-to-end lifecycle AI enabled Industrial IoT solutions with connected products, automation,
software and services, delivering digital twins to enable profitable growth for our customers.
We are a people company with an ecosystem of 150,000 colleagues and more than a million partners operating in over 100 countries
to ensure proximity to our customers and stakeholders. We embrace diversity and inclusion in everything we do, guided by our
meaningful purpose of a sustainable future for all.
Overview
Schneider Electric is aware of a vulnerability disclosed on Revenera FlexNet Publisher component.
Many vendors, including Schneider Electric, embed Revenera FlexNet Publisher in their offers.
Failure to apply the remediation/mitigations provided below may risk a local privilege escalation, which could
lead to the execution of a malicious DLL with elevated privilege. February 2025 Update: A remediation is available for the EcoStruxure™ Process Expert offer. The
EcoStruxure™ Process Expert for AVEVA System Platform offer is added to the “Affected Product and
Versions” section.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "We strongly recommend the following industry cybersecurity best practices.\n\nhttps://www.se.com/us/en/download/document/7EN52-0390/\n* Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network.\n* Install physical controls so no unauthorized personnel can access your industrial control and safety systems, components, peripheral equipment, and networks.\n* Place all controllers in locked cabinets and never leave them in the \u201cProgram\u201d mode.\n* Never connect programming software to any network other than the network intended for that device.\n* Scan all methods of mobile data exchange with the isolated network such as CDs, USB drives, etc. before use in the terminals or any node connected to these networks.\n* Never allow mobile devices that have connected to any other network besides the intended network to connect to the safety or control networks without proper sanitation.\n* Minimize network exposure for all control system devices and systems and ensure that they are not accessible from the Internet.\n* When remote access is required, use secure methods, such as Virtual Private Networks (VPNs). Recognize that VPNs may have vulnerabilities and should be updated to the most current version available. Also, understand that VPNs are only as secure as the connected devices.\nFor more information refer to the Schneider Electric Recommended Cybersecurity Best Practices document. \n",
"title": "General Security Recommendations"
},
{
"category": "general",
"text": "This document provides an overview of the identified vulnerability or vulnerabilities and actions required to mitigate. For more details and assistance on how to protect your installation, contact your local Schneider Electric representative or Schneider Electric Industrial Cybersecurity Services: https://www.se.com/ww/en/work/solutions/cybersecurity/. These organizations will be fully aware of this situation and can support you through the process.\n\n Customers should use appropriate patching methodologies when applying these patches to their systems. We\r\nstrongly recommend the use of back-ups and evaluating the impact of these patches in a Test and\r\nDevelopment environment or on an offline infrastructure. Contact Schneider Electric\u2019s Customer Care Center if\r\nyou need assistance removing a patch.\n\nFor further information related to cybersecurity in Schneider Electric\u2019s products, visit the company\u2019s cybersecurity support portal page: https://www.se.com/ww/en/work/support/cybersecurity/overview.jsp",
"title": "For More Information"
},
{
"category": "legal_disclaimer",
"text": "THIS NOTIFICATION DOCUMENT, THE INFORMATION CONTAINED HEREIN, AND ANY MATERIALS LINKED FROM IT (COLLECTIVELY, THIS \u201cNOTIFICATION\u201d) ARE INTENDED TO HELP PROVIDE AN OVERVIEW OF THE IDENTIFIED SITUATION AND SUGGESTED MITIGATION ACTIONS, REMEDIATION, FIX, AND/OR GENERAL SECURITY RECOMMENDATIONS AND IS PROVIDED ON AN \u201cAS-IS\u201d BASIS WITHOUT WARRANTY OR GUARANTEE OF ANY KIND. SCHNEIDER ELECTRIC DISCLAIMS ALL WARRANTIES RELATING TO THIS NOTIFICATION, EITHER EXPRESS OR IMPLIED, INCLUDING WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. SCHNEIDER ELECTRIC MAKES NO WARRANTY THAT THE NOTIFICATION WILL RESOLVE THE IDENTIFIED SITUATION. IN NO EVENT SHALL SCHNEIDER ELECTRIC BE LIABLE FOR ANY DAMAGES OR LOSSES WHATSOEVER IN CONNECTION WITH THIS NOTIFICATION, INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF SCHNEIDER ELECTRIC HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. YOUR USE OF THIS NOTIFICATION IS AT YOUR OWN RISK, AND YOU ARE SOLELY LIABLE FOR ANY DAMAGES TO YOUR SYSTEMS OR ASSETS OR OTHER LOSSES THAT MAY RESULT FROM YOUR USE OF THIS NOTIFICATION. SCHNEIDER ELECTRIC RESERVES THE RIGHT TO UPDATE OR CHANGE THIS NOTIFICATION AT ANY TIME AND IN ITS SOLE DISCRETION",
"title": "LEGAL DISCLAIMER"
},
{
"category": "general",
"text": "Schneider\u0027s purpose is to create Impact by empowering all to make the most of our energy and resources, bridging progress and\r\nsustainability for all. We call this Life Is On.\n\nOur mission is to be the trusted partner in Sustainability and Efficiency.\n\nWe are a global industrial technology leader bringing world-leading expertise in electrification, automation and digitization to smart\r\nindustries, resilient infrastructure, future-proof data centers, intelligent buildings, and intuitive homes. Anchored by our deep\r\ndomain expertise, we provide integrated end-to-end lifecycle AI enabled Industrial IoT solutions with connected products, automation,\r\nsoftware and services, delivering digital twins to enable profitable growth for our customers.\n\nWe are a people company with an ecosystem of 150,000 colleagues and more than a million partners operating in over 100 countries\r\nto ensure proximity to our customers and stakeholders. We embrace diversity and inclusion in everything we do, guided by our\r\nmeaningful purpose of a sustainable future for all.",
"title": "About Schneider Electric"
},
{
"category": "summary",
"text": "Schneider Electric is aware of a vulnerability disclosed on Revenera FlexNet Publisher component. \r\nMany vendors, including Schneider Electric, embed Revenera FlexNet Publisher in their offers.\r\nFailure to apply the remediation/mitigations provided below may risk a local privilege escalation, which could \r\nlead to the execution of a malicious DLL with elevated privilege. February 2025 Update: A remediation is available for the EcoStruxure\u2122 Process Expert offer. The\r\nEcoStruxure\u2122 Process Expert for AVEVA System Platform offer is added to the \u201cAffected Product and\r\nVersions\u201d section.",
"title": "Overview"
}
],
"publisher": {
"category": "vendor",
"contact_details": "cpcert@se.com",
"name": "Schneider Electric CPCERT",
"namespace": "https://www.se.com/ww/en/work/support/cybersecurity/security-notifications.jsp"
},
"references": [
{
"category": "self",
"summary": "FlexNet Publisher Vulnerability - SEVD-2025-014-07 PDF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-07\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=SEVD-2025-014-07.pdf"
},
{
"category": "self",
"summary": "FlexNet Publisher Vulnerability - SEVD-2025-014-07 CSAF Version",
"url": "https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2025-014-07\u0026p_enDocType=Security+and+Safety+Notice\u0026p_File_Name=sevd-2025-014-07.json"
},
{
"category": "external",
"summary": "Recommended Cybersecurity Best Practices",
"url": "https://www.se.com/us/en/download/document/7EN52-0390"
},
{
"category": "external",
"summary": "Revenera Advisory",
"url": "https://community.revenera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue"
},
{
"category": "external",
"summary": "ZDI Advisory",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-359/"
}
],
"title": "FlexNet Publisher Vulnerability",
"tracking": {
"current_release_date": "2025-11-11T08:00:00.000Z",
"generator": {
"date": "2025-11-07T12:20:16.407Z",
"engine": {
"name": "Schneider Electric CSAF Generator",
"version": "1.2"
}
},
"id": "SEVD-2025-014-07",
"initial_release_date": "2025-01-14T07:00:00.000Z",
"revision_history": [
{
"date": "2025-01-14T07:00:00.000Z",
"number": "1.0.0",
"summary": "Original Release"
},
{
"date": "2025-02-11T06:00:00.000Z",
"number": "2.0.0",
"summary": "A remediation is available for the EcoStruxure\u2122 Process Expert offer. The EcoStruxure\u2122 Process Expert for AVEVA System Platform offer is added to the \u201cAffected Product and Versions\u201d section"
},
{
"date": "2025-07-08T04:00:00.000Z",
"number": "3.0.0",
"summary": "Pro-face BLUE is added to the \u201cAffected Product and Versions\u201d section. Remediations are now available for EcoStruxure\u2122Control Expert, EcoStruxure\u2122 Operator Terminal Expert and Pro-face BLUE offers. Updated the link to the fix of EcoStruxure\u2122 Control Expert Asset Link offer"
},
{
"date": "2025-10-14T07:00:00.000Z",
"number": "4.0.0",
"summary": "A remediation is now available for Zelio Soft 2 and EcoStruxure\u2122 OPC UA Server Expert offers"
},
{
"date": "2025-11-11T08:00:00.000Z",
"number": "5.0.0",
"summary": "CVE, CWE, \u0026 CVSS Score information was added."
}
],
"status": "final",
"version": "5.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c16.2",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Control Expert Versions prior to V16.2",
"product_id": "1"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Control Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2023 (v4.8.0.5715)",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Process Expert Versions prior to 2023 (v4.8.0.5715)",
"product_id": "2"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Process Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cSV2.01SP3",
"product": {
"name": "EcoStruxure\u2122 OPC UA Server Expert Versions prior to SV2.01SP3",
"product_id": "3"
}
},
{
"category": "product_version_range",
"name": "SV2.01SP3",
"product": {
"name": "EcoStruxure\u2122 OPC UA Server Expert Version SV2.01SP3",
"product_id": "23"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 OPC UA Server Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.0 SP1",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Control Expert Asset Link Versions prior to V4.0 SP1",
"product_id": "4"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Control Expert Asset Link"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Machine SCADA Expert Asset Link All versions",
"product_id": "5"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Machine SCADA Expert Asset Link"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.0.18",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Architecture Builder Versions prior to V7.0.18",
"product_id": "6"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Architecture Builder"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.0",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Operator Terminal Expert Versions prior to V4.0",
"product_id": "7"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Operator Terminal Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.3SP1 HF1",
"product": {
"name": "Schneider Electric Vijeo Designer Version prior to V6.3SP1 HF1",
"product_id": "8"
}
}
],
"category": "product_name",
"name": "Vijeo Designer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Machine Expert including EcoStruxure\u2122 Machine Expert Safety All versions",
"product_id": "9"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Machine Expert including EcoStruxure\u2122 Machine Expert Safety"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Machine Expert Twin All versions",
"product_id": "10"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Machine Expert Twin"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c5.4.3",
"product": {
"name": "Zelio Soft 2 Versions prior to v5.4.3",
"product_id": "11"
}
},
{
"category": "product_version",
"name": "5.4.3",
"product": {
"name": "Zelio Soft 2 Version v5.4.3",
"product_id": "22"
}
}
],
"category": "product_name",
"name": "Zelio Soft 2"
},
{
"branches": [
{
"category": "product_version",
"name": "16.2",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Control Expert Version V16.2",
"product_id": "12"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Control Expert"
},
{
"branches": [
{
"category": "product_version",
"name": "7.0.18",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Architecture Builder Version V7.0.18",
"product_id": "13"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Architecture Builder"
},
{
"branches": [
{
"category": "product_version",
"name": "4.0SP1",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Control Expert Asset Link Version V4.0SP1",
"product_id": "14"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Control Expert Asset Link"
},
{
"branches": [
{
"category": "product_version",
"name": "6.3SP1 HF1",
"product": {
"name": "Schneider Electric Vijeo Designer Version V6.3SP1 HF1",
"product_id": "15"
}
}
],
"category": "product_name",
"name": "Vijeo Designer"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Process Expert for AVEVA System Platform All versions",
"product_id": "16"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Process Expert for AVEVA System Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "2023 (v4.8.0.5715)",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Process Expert Version 2023 (v4.8.0.5715)",
"product_id": "17"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Process Expert 2023"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c4.0",
"product": {
"name": "Schneider Electric Pro-face BLUE Versions prior to V4.0",
"product_id": "18"
}
}
],
"category": "product_name",
"name": "Pro-face BLUE"
},
{
"branches": [
{
"category": "product_version",
"name": "4.0",
"product": {
"name": "Schneider Electric Pro-face BLUE Version V4.0",
"product_id": "19"
}
}
],
"category": "product_name",
"name": "Pro-face BLUE"
},
{
"branches": [
{
"category": "product_version",
"name": "4.0",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Operator Terminal Expert Version V4.0",
"product_id": "20"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Operator Terminal Expert"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2023",
"product": {
"name": "Schneider Electric EcoStruxure\u2122 Process Expert Versions prior to 2023",
"product_id": "21"
}
}
],
"category": "product_name",
"name": "EcoStruxure\u2122 Process Expert"
}
],
"category": "vendor",
"name": "Schneider Electric"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-2658",
"cwe": {
"id": "CWE-427",
"name": "Uncontrolled Search Path Element"
},
"notes": [
{
"category": "details",
"text": "Vulnerability disclosed by Revenera group in FlexNet Publisher impact Schneider Electric software. \nAdditional information about the vulnerability CVE-2024-2658 can be found in the Revenera Advisory at:\nhttps://community.revenera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue",
"title": "Vulnerability Details"
}
],
"product_status": {
"fixed": [
"12",
"13",
"14",
"15",
"17",
"19",
"20",
"22",
"23"
],
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"16",
"18",
"21"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Version 16.2 of EcoStruxure\u2122 Control Expert includes a fix for this vulnerability and is \r\navailable for download here:\r\nhttps://www.se.com/ww/en/product-range/548-ecostruxure-control-expert-unity-pro/ \r\nReboot the computer after installation is completed.",
"product_ids": [
"1"
],
"restart_required": {
"category": "system"
},
"url": "https://www.se.com/ww/en/product-range/548-ecostruxure-control-expert-unity-pro/"
},
{
"category": "vendor_fix",
"details": "Version V7.0.18 of EcoStruxure\u2122 Architecture Builder includes a fix for this vulnerability\r\nand is available for download here:\r\nhttps://www.se.com/ww/en/product-range/195445393-ecostruxure-architecture-builder/ -\r\nsoftware-and-firmware",
"product_ids": [
"6"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/product-range/195445393-ecostruxure-architecture-builder/#software-and-firmware"
},
{
"category": "vendor_fix",
"details": "Version V4.0SP1 of EcoStruxure\u2122 Control Expert Asset Link includes a fix for this \r\nvulnerability and is available for download here:\r\nhttps://www.se.com/ww/en/download/document/ECALV40SP1/",
"product_ids": [
"4"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/product-range/548-ecostruxure-control-expert-unity-pro/"
},
{
"category": "vendor_fix",
"details": "Version V6.3SP1 HF1 of Vijeo Designer includes a fix for this vulnerability. Please contact \r\nyour Schneider Electric Customer Support https://www.se.com/ww/en/work/support/country-selector/contact-us.jsp to get Vijeo Designer version V6.3SP1 HF1\r\nsoftware.",
"product_ids": [
"8"
],
"restart_required": {
"category": "none"
}
},
{
"category": "mitigation",
"details": "Schneider Electric is establishing a remediation plan for all \r\nfuture versions of the following that will include a fix for this\r\nvulnerability:\r\n\u2022 EcoStruxure\u2122 Process Expert\r\n\u2022 EcoStruxure\u2122 OPC UA Server Expert\r\n\u2022 EcoStruxure\u2122 Machine SCADA Expert - Asset \r\nLink\r\n\u2022 EcoStruxure\u2122 Operator Terminal Expert\r\n\u2022 EcoStruxure\u2122 Machine Expert including \r\nEcoStruxure\u2122 Machine Expert Safety\r\n\u2022 EcoStruxure\u2122 Machine Expert Twin\r\n\u2022 Zelio Soft 2\r\nWe will update this document when the remediation is \r\navailable. Until then, customers should immediately apply \r\nthe following mitigations to reduce the risk of exploit:\r\n\u2022 Limit authenticated user access to the workstation \r\nand implement existing User Account Control \r\npractices.\r\n\u2022 Follow workstation, network and site-hardening \r\nguidelines in the Recommended Cybersecurity \r\nBest Practices guide available for download here https://www.se.com/ww/en/download/document/7EN52-0390/?ssr=true .",
"product_ids": [
"1",
"2",
"4",
"5",
"6",
"8",
"9",
"10",
"16"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/download/document/7EN52-0390/?ssr=true"
},
{
"category": "mitigation",
"details": "If customers choose not to apply the remediation provided above, they should immediately apply the following\r\nmitigations to reduce the risk of exploit:\r\n\u2022 Limit authenticated user access to the workstation and implement existing User Account Control\r\npractices.\r\n\u2022 Follow workstation, network and site-hardening guidelines in the Recommended Cybersecurity Best\r\nPractices guide available for download here.",
"product_ids": [
"1",
"2",
"3",
"4",
"6",
"7",
"8",
"11",
"18",
"21"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/download/document/7EN52-0390/?ssr=true"
},
{
"category": "vendor_fix",
"details": "Version 2023 (v4.8.0.5715) of EcoStruxure\u2122 Process Expert includes a fix for this \r\nvulnerability and is available for download here:\r\nhttps://www.se.com/ww/en/product-country-selector/?pageType=productrange\u0026\r\nsourceId=65406 \r\nUninstall previous version 2023 (v4.8.0.5115) before installing Version 2023 \r\n(v4.8.0.5715).\r\nVersion string can be found on engineering server console.",
"product_ids": [
"2"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/product-country-selector/?pageType=product-range\u0026sourceId=65406"
},
{
"category": "vendor_fix",
"details": "Version 2023 (v4.8.0.5715) of EcoStruxure\u2122 Process Expert includes a fix for \r\nthis vulnerability and is available for download here:\r\nhttps://www.se.com/ww/en/product-country-selector/?pageType=product-range\u0026sourceId=65406",
"product_ids": [
"21"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/product-country-selector/?pageType=product-range\u0026sourceId=65406"
},
{
"category": "vendor_fix",
"details": "Version 4.0 of EcoStruxure\u2122 Operator Terminal Expert includes a fix for this \r\nvulnerability and is available for download here: \r\nhttps://www.se.com/ww/en/product-range/62621-ecostruxure-operator-terminal-expert/#software-and-firmware",
"product_ids": [
"7"
],
"restart_required": {
"category": "none"
},
"url": "https://www.se.com/ww/en/product-range/62621-ecostruxure-operator-terminal-expert/#software-and-firmware"
},
{
"category": "vendor_fix",
"details": "Version 4.0 of Pro-face BLUE includes a fix for this vulnerability and is available \r\nfor download here:\r\nhttps://www.proface.com/en/hmi_design_studio/blue/page/installer",
"product_ids": [
"18"
],
"restart_required": {
"category": "none"
},
"url": "https://www.proface.com/en/hmi_design_studio/blue/page/installer"
},
{
"category": "vendor_fix",
"details": "Version 5.4.3 of Zelio Soft 2 includes a fix for this vulnerability and is available for download here:\r\nhttps://www.se.com/ww/en/product-range/542-zelio-soft/#software-and-firmware",
"product_ids": [
"11"
],
"restart_required": {
"category": "service"
},
"url": "https://www.se.com/ww/en/product-range/542-zelio-soft/#software-and-firmware"
},
{
"category": "vendor_fix",
"details": "Version SV2.01SP3 of EcoStruxure\u2122 OPC UA Server Expert includes a fix for this vulnerability and is available for download here:\r\nhttps://www.se.com/ww/en/product-range/66388-ecostruxure-opc-ua-server-expert/#software-and-firmware",
"product_ids": [
"3"
],
"restart_required": {
"category": "system"
},
"url": "https://www.se.com/ww/en/product-range/66388-ecostruxure-opc-ua-server-expert/#software-and-firmware"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"16",
"18",
"21"
]
}
],
"title": "CVE-2024-2658"
}
]
}
FKIE_CVE-2024-2658
Vulnerability from fkie_nvd - Published: 2025-01-30 17:15 - Updated: 2025-01-30 17:15
Severity ?
Summary
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.
References
Impacted products
| Vendor | Product | Version |
|---|
{
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u00a02024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges."
},
{
"lang": "es",
"value": "Una configuraci\u00f3n incorrecta en lmadmin.exe de las versiones de FlexNet Publisher anteriores a 2024 R1 (11.19.6.0) permite que el archivo de configuraci\u00f3n de OpenSSL se cargue desde un directorio inexistente. Un usuario no autorizado, autenticado localmente y con privilegios bajos puede crear el directorio y cargar un archivo openssl.conf manipulado especial, lo que lleva a la ejecuci\u00f3n de una DLL maliciosa (Dynamic-Link librer\u00eda) con privilegios elevados."
}
],
"id": "CVE-2024-2658",
"lastModified": "2025-01-30T17:15:17.670",
"metrics": {
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 8.5,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "NONE",
"subIntegrityImpact": "NONE",
"userInteraction": "NONE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"version": "4.0",
"vulnAvailabilityImpact": "HIGH",
"vulnConfidentialityImpact": "HIGH",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"source": "PSIRT-CNA@flexerasoftware.com",
"type": "Secondary"
}
]
},
"published": "2025-01-30T17:15:17.670",
"references": [
{
"source": "PSIRT-CNA@flexerasoftware.com",
"url": "https://community.flexera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue"
},
{
"source": "PSIRT-CNA@flexerasoftware.com",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-359/"
}
],
"sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
"vulnStatus": "Awaiting Analysis",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-427"
}
],
"source": "PSIRT-CNA@flexerasoftware.com",
"type": "Secondary"
}
]
}
GHSA-2795-PJW4-5495
Vulnerability from github – Published: 2025-01-30 18:32 – Updated: 2025-01-30 18:32
VLAI?
Details
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.
Severity ?
{
"affected": [],
"aliases": [
"CVE-2024-2658"
],
"database_specific": {
"cwe_ids": [
"CWE-427"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-01-30T17:15:17Z",
"severity": "HIGH"
},
"details": "A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to\u00a02024 R1 (11.19.6.0) allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted openssl.conf file leading to the execution of a malicious DLL (Dynamic-Link Library) with elevated privileges.",
"id": "GHSA-2795-pjw4-5495",
"modified": "2025-01-30T18:32:08Z",
"published": "2025-01-30T18:32:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-2658"
},
{
"type": "WEB",
"url": "https://community.flexera.com/s/article/cve-2024-2658-flexnet-publisher-potential-local-privilege-escalation-issue"
},
{
"type": "WEB",
"url": "https://www.zerodayinitiative.com/advisories/ZDI-24-359"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
WID-SEC-W-2024-1499
Vulnerability from csaf_certbund - Published: 2024-07-01 22:00 - Updated: 2024-07-01 22:00Summary
Dell NetWorker: Schwachstelle ermöglicht Privilegieneskalation
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Dell NetWorker stellt zentralisiert Backup- und Recovery-Dienste bereit.
Angriff
Ein lokaler Angreifer kann eine Schwachstelle in Dell NetWorker ausnutzen, um seine Privilegien zu erhöhen.
Betroffene Betriebssysteme
- Sonstiges
- UNIX
- Windows
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Dell NetWorker stellt zentralisiert Backup- und Recovery-Dienste bereit.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler Angreifer kann eine Schwachstelle in Dell NetWorker ausnutzen, um seine Privilegien zu erh\u00f6hen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1499 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1499.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1499 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1499"
},
{
"category": "external",
"summary": "Dell Security Update vom 2024-07-01",
"url": "https://www.dell.com/support/kbdoc/de-de/000226576/dsa-2024-007-security-update-for-dell-networker-license-server-vulnerabilities"
}
],
"source_lang": "en-US",
"title": "Dell NetWorker: Schwachstelle erm\u00f6glicht Privilegieneskalation",
"tracking": {
"current_release_date": "2024-07-01T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T18:10:48.130+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2024-1499",
"initial_release_date": "2024-07-01T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-07-01T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "EMC License Server \u003c3.7.8",
"product": {
"name": "Dell NetWorker EMC License Server \u003c3.7.8",
"product_id": "T035755"
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-2658",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Dell NetWorker. Diese Fehler betrifft den FlexNet Publisher aufgrund eines unkontrollierten Suchpfad-Elements in lmadmin.exe, das zur Ausf\u00fchrung einer b\u00f6sartigen Dynamic Link Library (DLL) f\u00fchren kann. Ein lokaler Angreifer k\u00f6nnte diese Sicherheitsl\u00fccke ausnutzen, um erweiterte Rechte zu erlangen."
}
],
"release_date": "2024-07-01T22:00:00.000+00:00",
"title": "CVE-2024-2658"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…