10критическая
CVE-2024-45066
Описание
A specially crafted POST request to the ProGauge MAGLINK LX CONSOLE IP
sub-menu can allow a remote attacker to inject arbitrary commands.
Затрагиваемое ПО
Doverfuelingsolutions Progauge maglink lx console firmwareDoverfuelingsolutions Progauge maglink lx consoleDoverfuelingsolutions Progauge maglink lx4 console firmwareDoverfuelingsolutions Progauge maglink lx4 console
CVSS
| Балл | 10 — критическая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-24-268-04