NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-6098

Summary	When performing an online tag generation to devices which communicate using the ControlLogix protocol, a machine-in-the-middle, or a device that is not configured correctly, could deliver a response leading to unrestricted or unregulated resource allocation. This could cause a denial-of-service condition and crash the Kepware application. By default, these functions are turned off, yet they remain accessible for users who recognize and require their advantages.
Publication Date	Aug. 17, 2024, 12:15 a.m.
Registration Date	Aug. 26, 2024, 5:02 p.m.
Last Update	Aug. 19, 2024, 10 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.cisa.gov/news-events/ics-advisories/icsa-24-228-11
2	https://www.ptc.com/en/support/article/CS423892

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-770	制限またはスロットリング無しのリソースの割り当て	https://cwe.mitre.org/data/definitions/770.html