CVE-2024-6758

Name of the Vulnerable Software and Affected Versions Sprecher Automation SPRECON-E versions prior to 8.71j

Description The issue is related to improper privilege management, allowing a remote attacker with low privileges to save unauthorized protection assignments. This can be achieved through specially crafted HTTP(S) requests, potentially enabling the attacker to modify the device's configuration.

Recommendations For versions prior to 8.71j, upgrade to version 8.71j or later to mitigate the risk of exploitation. As a temporary workaround, consider restricting access to the device to minimize the risk of unauthorized configuration changes.