CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8306

CWE-269: Improper Privilege Management vulnerability exists that could cause unauthorized access, loss of confidentiality, integrity and availability of the workstation when non-admin authenticated user tries to perform privilege escalation by tampering with the binaries.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.3%

CVSS Severity

CVSS v3 Score 7.8

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-254-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-254-01.pdf

Products affected by CVE-2024-8306

Schneider-Electric » Vijeo Designer » Version: N/A

cpe:2.3:a:schneider-electric:vijeo_designer:-
Schneider-Electric » Vijeo Designer » Version: 1.0

cpe:2.3:a:schneider-electric:vijeo_designer:1.0
Schneider-Electric » Vijeo Designer » Version: 1.1

cpe:2.3:a:schneider-electric:vijeo_designer:1.1
Schneider-Electric » Vijeo Designer » Version: 1.2.1

cpe:2.3:a:schneider-electric:vijeo_designer:1.2.1
Schneider-Electric » Vijeo Designer » Version: 6.2

cpe:2.3:a:schneider-electric:vijeo_designer:6.2
Schneider-Electric » Vijeo Designer » Version: 6.2.10

cpe:2.3:a:schneider-electric:vijeo_designer:6.2.10
Schneider-Electric » Vijeo Designer » Version: 6.2.11

cpe:2.3:a:schneider-electric:vijeo_designer:6.2.11
Schneider-Electric » Vijeo Designer » Version: 6.3

cpe:2.3:a:schneider-electric:vijeo_designer:6.3
Schneider-Electric » Vijeo Designer Embedded In Ecostruxure Machine Expert » Version: N/A

cpe:2.3:a:schneider-electric:vijeo_designer_embedded_in_ecostruxure_machine_expert:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8306

Products

Pricing

Contact Us