CVE-2024-8300
CVSS 3.1 Score 7 of 10 (high)
Details
Summary
CVE-2024-8300 is a Dead Code vulnerability affecting multiple versions of ICONICS GENESIS64 (10.97.2, 10.97.2 CFR1, 10.97.2 CRF2, and 10.97.3) and Mitsubishi Electric GENESIS64 (10.97.2, 10.97.2 CFR1, 10.97.2 CRF2, and 10.97.3). This issue allows a local, authenticated attacker to execute malicious code by manipulating a specific DLL. Successful exploitation could result in information disclosure, modification, destruction, or deletion, as well as a potential Denial of Service condition. Users of the affected products are advised to apply the necessary patches as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.