PT-2025-6494 · Schneider Electric · Uni-Telway Driver+4
Published
2025-02-13
·
Updated
2025-02-13
·
CVE-2024-10083
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
No specific software or versions are mentioned in the provided descriptions.
Description
The issue is related to an Improper Input Validation vulnerability that could cause a denial of service of an engineering workstation. This occurs when a specific driver interface is invoked locally by an authenticated user with crafted input.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Uni-Telway Driver
Uni-Telway Driver Used In Ecostruxure Control Expert
Uni-Telway Driver Used In Ecostruxure Process Expert
Uni-Telway Driver Used In Ecostruxure Process Expert For Aveva System Platform
Uni-Telway Driver Used In Opc Factory Server