CVE-2018-8872

In Schneider Electric Triconex Tricon MP model 3008 firmware versions 10.0-10.4, system calls read directly from memory addresses within the control program area without any verification. Manipulating this data could allow attacker data to be copied anywhere within memory.
References
Configurations

Configuration 1


Information

Published : 2018-05-04 05:29

Updated : 2019-10-09 11:43


NVD link : CVE-2018-8872

Mitre link : CVE-2018-8872

Products Affected
No products.
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer