1 results (0.007 seconds)
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0
CVE-2024-6596 – Endress+Hauser: Multiple products are vulnerable to code injection
https://notcve.org/view.php?id=CVE-2024-6596
An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context. • https://cert.vde.com/en/advisories/VDE-2024-041 • CWE-94: Improper Control of Generation of Code ('Code Injection') •