What is CVE-2024-31484?

CVE-2024-31484 is a high-severity vulnerability in Siemens Cpc80 Central Processing/communication, classified under Improper Null Termination. CVSS score: 7.8/10. Published 2024-05-14.

How severe is CVE-2024-31484?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Siemens Cpc80 Central Processing/communication

CVE-2024-31484

A vulnerability has been identified in CPC80 Central Processing/Communication (All versions < V16.41), CPCI85 Central Processing/Communication (All versions < V5.30), CPCX26 Central Processing/Communication (All versions < V06.02), ETA4 Et…

EPSS: 0.001 (19.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Siemens Cpc80 Central Processing/communication — versions 0
Siemens Cpci85 Central Processing/communication — versions 0
Siemens Cpcx26 Central Processing/communication — versions 0
Siemens Eta4 Ethernet Interface Iec60870-5-104 — versions 0
Siemens Eta5 Ethernet Int. 1x100tx Iec61850 Ed.2 — versions 0
Siemens Pccx26 Ax 1703 Pe, Contr, Communication Element — versions 0

Weakness classification (CWE)

CWE-170 — Improper Null Termination

References

Frequently asked questions

What is CVE-2024-31484?: CVE-2024-31484 is a high-severity vulnerability in Siemens Cpc80 Central Processing/communication, classified under Improper Null Termination. CVSS score: 7.8/10. Published 2024-05-14.
How severe is CVE-2024-31484?: High severity. CVSS v3 base score is 7.8 out of 10.