CVE-2024-8518

CWE-20: Improper Input Validation vulnerability exists that could cause a crash of the Zelio Soft 2 application when a specially crafted project file is loaded by an application user.

CVSS v3 3.3 LOW

3.3^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-06&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-282-06.pdf

Configurations

No configuration.

History

10 Oct 2024, 12:56

Type	Values Removed	Values Added
Summary		(es) CWE-20: Existe una vulnerabilidad de validación de entrada incorrecta que podría provocar un bloqueo de la aplicación Zelio Soft 2 cuando un usuario de la aplicación carga un archivo de proyecto especialmente manipulado.

08 Oct 2024, 10:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-08 10:15

Updated : 2024-10-10 12:56

NVD link : CVE-2024-8518

Mitre link : CVE-2024-8518

CVE.ORG link : CVE-2024-8518

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

3.3 /10