CVE-2024-6596 – Endress+Hauser: Multiple products are vulnerable to code injection

https://notcve.org/view.php?id=CVE-2024-6596

An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context. • https://cert.vde.com/en/advisories/VDE-2024-041 • CWE-94: Improper Control of Generation of Code ('Code Injection') •