PT-2024-10277 · Rockwell Automation · Rockwell Automation Power Monitor 1000
Vera Mens
·
Published
2024-12-17
·
Updated
2025-09-04
·
CVE-2024-12372
CVSS v4.0
9.3
Critical
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Rockwell Automation Power Monitor 1000 (affected versions not specified)
Description
A denial-of-service and possible remote code execution vulnerability exists in Rockwell Automation Power Monitor 1000. The vulnerability results in corruption of the heap memory, which may compromise system integrity, potentially allowing for remote code execution or a denial-of-service attack. The vulnerability is related to a buffer overflow in dynamic memory.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Code Injection
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Rockwell Automation Power Monitor 1000