CVE-2024-0400

CVSS V2 None CVSS V3 None
Description
SCM Software is a client and server application. An Authenticated System manager client can execute LINQ query in the SCM server, for customized filtering. An Authenticated malicious client can send a specially crafted code to skip the validation and execute arbitrary code (RCE) on the SCM Server remotely. Malicious clients can execute any command by using this RCE vulnerability.
Overview
  • CVE ID
  • CVE-2024-0400
  • Assigner
  • Hitachi Energy
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-03-27T02:03:57.253Z
  • Last Modified Date
  • 2024-03-27T02:14:49.460Z
History
Created Old Value New Value Data Type Notes
2024-06-26 10:42:49 Added to TrackCVE