CVE-2024-7695

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-7695
Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service attack.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240162-cve-2024-7695-out-of-bounds-write-vulnerability-identified-in-multiple-pt-switches
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240163-cve-2024-7695-out-of-bounds-write-vulnerability-in-multiple-eds,-ics,-iks,-and-sds-switches
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240164-cve-2024-7695-out-of-bounds-write-vulnerability-identified-in-en-50155-switches
Configurations

No configuration.

History

22 Feb 2025, 15:15

Type Values Removed Values Added
References
  • () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240164-cve-2024-7695-out-of-bounds-write-vulnerability-identified-in-en-50155-switches -

07 Feb 2025, 07:15

Type Values Removed Values Added
References
  • () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240163-cve-2024-7695-out-of-bounds-write-vulnerability-in-multiple-eds,-ics,-iks,-and-sds-switches -
Summary
  • (es) Varios conmutadores se ven afectados por una vulnerabilidad de escritura fuera de los límites. Esta vulnerabilidad es causada por una validación de entrada insuficiente, que permite que los datos se escriban en la memoria fuera de los límites del búfer. La explotación exitosa de esta vulnerabilidad podría resultar en un ataque de denegación de servicio. Esta vulnerabilidad plantea una amenaza remota significativa si los productos afectados están expuestos a redes de acceso público. Los atacantes podrían interrumpir las operaciones apagando los sistemas afectados. Debido a la naturaleza crítica de este riesgo de seguridad, recomendamos encarecidamente tomar medidas inmediatas para evitar su posible explotación.
Summary (en) Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service attack. This vulnerability poses a significant remote threat if the affected products are exposed to publicly accessible networks. Attackers could potentially disrupt operations by shutting down the affected systems. Due to the critical nature of this security risk, we strongly recommend taking immediate action to prevent its potential exploitation. (en) Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service attack.

29 Jan 2025, 08:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-01-29 08:15

Updated : 2025-02-22 15:15

NVD link : CVE-2024-7695

Mitre link : CVE-2024-7695

CVE.ORG link : CVE-2024-7695

JSON object : View

Products Affected

No product.

CWE
CWE-787

Out-of-bounds Write