Schneider Electric Accutech Manager (2.7 and prior)​ - Classic Buffer Overflow

Accutech Manager​

CVE-2023-29414

CWE-120: Buffer Copy without Checking Size of Input (Classic Buffer Overflow)

• Accutech Manager (Version 2.7 and prior)

SEVD-2023-192-03 PDF

SEVD-2023-192-03 CSAF

Summary:
This high-rated issue, with a CVSS v3.1 Base Score of 7.8, is related to a Classic Buffer Overflow exploitation (CWE-120). It could result in user privilege escalation if a local user sends a specific string input to a local function call.