N/A

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists that could allow an unauthorized attacker to modify configuration values outside of the normal range when the attacker sends specific Modbus write packets to the device which could result in invalid data or loss of web interface functionality.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

内存缓冲区边界内操作的限制不恰当

Schneider Electric PowerLogic HDPM6000 缓冲区错误漏洞

Schneider Electric PowerLogic HDPM6000是法国施耐德电气（Schneider Electric）公司的一个高密度计量系统。 Schneider Electric PowerLogic HDPM6000存在缓冲区错误漏洞，该漏洞源于包含一个内存缓冲区边界内操作限制不当漏洞，当攻击者向设备发送特定的 Modbus 写入数据包时，该漏洞可能允许未经授权的攻击者修改正常范围之外的配置值，这可能导致无效数据或 Web 界面功能丧失。

N/A

N/A