CVE-2024-9005

Vulnerability Description

CWE-502: Deserialization of Untrusted Data vulnerability exists that could allow code to be remotely executed on the server when unsafely deserialized data is posted to the web server.

Related Weaknesses (CWE)

CWE-502

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-05&p_enDoc

FAQ

What is CVE-2024-9005?

CVE-2024-9005 is a documented vulnerability. CWE-502: Deserialization of Untrusted Data vulnerability exists that could allow code to be remotely executed on the server when unsafely deserialized data is posted to the web server.

How severe is CVE-2024-9005?

CVSS scoring is not yet available for CVE-2024-9005. Check NVD for updates.

Is there a patch for CVE-2024-9005?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.