CVE-2024-10575

CWE-862: Missing Authorization vulnerability exists that could cause unauthorized access when enabled on the network and potentially impacting connected devices.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.21.0.6:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.22.0.3:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.22.1.5:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.23.0.4:*:*:*:*:*:*:*

History

19 Nov 2024, 17:28

Type Values Removed Values Added
First Time Schneider-electric
Schneider-electric ecostruxure It Gateway
CPE cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.21.0.6:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.23.0.4:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.22.1.5:*:*:*:*:*:*:*
cpe:2.3:a:schneider-electric:ecostruxure_it_gateway:1.22.0.3:*:*:*:*:*:*:*
References () https://download.schneider-electric.com/doc/SEVD-2024-317-04/SEVD-2024-317-04.pdf - () https://download.schneider-electric.com/doc/SEVD-2024-317-04/SEVD-2024-317-04.pdf - Patch, Vendor Advisory

13 Nov 2024, 17:01

Type Values Removed Values Added
Summary
  • (es) CWE-862: Existe una vulnerabilidad de autorización faltante que podría causar acceso no autorizado cuando se habilita en la red y potencialmente afectar los dispositivos conectados.

13 Nov 2024, 05:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-13 05:15

Updated : 2024-11-19 17:28


NVD link : CVE-2024-10575

Mitre link : CVE-2024-10575

CVE.ORG link : CVE-2024-10575


JSON object : View

Products Affected

schneider-electric

  • ecostruxure_it_gateway
CWE
CWE-862

Missing Authorization