CVE-2024-8300

CVSS 3.1 Score 7 of 10 (high)

Details

Published Nov 28, 2024
Updated: Dec 6, 2024
CWE ID 561

Summary

CVE-2024-8300 is a Dead Code vulnerability affecting multiple versions of ICONICS GENESIS64 (10.97.2, 10.97.2 CFR1, 10.97.2 CRF2, and 10.97.3) and Mitsubishi Electric GENESIS64 (10.97.2, 10.97.2 CFR1, 10.97.2 CRF2, and 10.97.3). This issue allows a local, authenticated attacker to execute malicious code by manipulating a specific DLL. Successful exploitation could result in information disclosure, modification, destruction, or deletion, as well as a potential Denial of Service condition. Users of the affected products are advised to apply the necessary patches as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share