CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-27201

An improper input validation vulnerability exists in the OAS Engine User Configuration functionality of Open Automation Software OAS Platform V19.00.0057. A specially crafted series of network requests can lead to unexpected data in the configuration. An attacker can send a sequence of requests to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 36.5%

CVSS Severity

CVSS v3 Score 4.9

References

https://talosintelligence.com/vulnerability_reports/TALOS-2024-1949
https://talosintelligence.com/vulnerability_reports/TALOS-2024-1949

Products affected by CVE-2024-27201

Openautomationsoftware » Open Automation Software » Version: 19.0.0.57

cpe:2.3:a:openautomationsoftware:open_automation_software:19.0.0.57

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-27201

Products

Pricing

Contact Us