Description
A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.
Published: 2024-05-28
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2024-22214 A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.
History

Sun, 13 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00406}

 epss

{'score': 0.00612}

Thu, 13 Feb 2025 18:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 12 Feb 2025 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Automationdirect
Automationdirect p1-540
Automationdirect p1-540 Firmware
Automationdirect p1-550
Automationdirect p1-550 Firmware
Automationdirect p2-550
Automationdirect p2-550 Firmware
Automationdirect p3-530
Automationdirect p3-530 Firmware
Automationdirect p3-550
Automationdirect p3-550 Firmware
Automationdirect p3-550e
Automationdirect p3-550e Firmware
Weaknesses CWE-787
CPEs cpe:2.3:h:automationdirect:p1-540:-:*:*:*:*:*:*:*
cpe:2.3:h:automationdirect:p1-550:-:*:*:*:*:*:*:*
cpe:2.3:h:automationdirect:p2-550:-:*:*:*:*:*:*:*
cpe:2.3:h:automationdirect:p3-530:-:*:*:*:*:*:*:*
cpe:2.3:h:automationdirect:p3-550:-:*:*:*:*:*:*:*
cpe:2.3:h:automationdirect:p3-550e:-:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p1-540_firmware:1.2.10.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p1-540_firmware:4.1.1.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p1-550_firmware:1.2.10.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p1-550_firmware:4.1.1.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p2-550_firmware:1.2.10.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p2-550_firmware:4.1.1.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-530_firmware:1.2.10.9:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-530_firmware:4.1.1.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-550_firmware:1.2.10.9:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-550_firmware:4.1.1.10:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-550e_firmware:1.2.10.9:*:*:*:*:*:*:*
cpe:2.3:o:automationdirect:p3-550e_firmware:4.1.1.10:*:*:*:*:*:*:*
Vendors & Products Automationdirect
Automationdirect p1-540
Automationdirect p1-540 Firmware
Automationdirect p1-550
Automationdirect p1-550 Firmware
Automationdirect p2-550
Automationdirect p2-550 Firmware
Automationdirect p3-530
Automationdirect p3-530 Firmware
Automationdirect p3-550
Automationdirect p3-550 Firmware
Automationdirect p3-550e
Automationdirect p3-550e Firmware

Subscriptions

Automationdirect P1-540 P1-540 Firmware P1-550 P1-550 Firmware P2-550 P2-550 Firmware P3-530 P3-530 Firmware P3-550 P3-550 Firmware P3-550e P3-550e Firmware
cve-icon MITRE

Status: PUBLISHED

Assigner: talos

Published:

Updated: 2025-02-13T17:40:31.857Z

Reserved: 2024-02-01T20:26:50.067Z

Link: CVE-2024-24851

cve-icon Vulnrichment

Updated: 2024-08-01T23:28:12.894Z

cve-icon NVD

Status : Analyzed

Published: 2024-05-28T16:15:13.150

Modified: 2025-02-12T17:30:47.617

Link: CVE-2024-24851

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses