AutomationDirect P1-550 Firmware 4.1.1.10
Approved changes feed: RSS · Atom
cpe:2.3:o:automationdirect:p1-550_firmware:4.1.1.10:*:*:*:*:*:*:*
part: o version: 4.1.1.10 update: *
| Vendor | Automationdirect (5dd60aaf-eea3-5732-9a9c-5b671c0ed914) |
|---|---|
| Product | P1 550 Firmware (ff6ac284-cecc-5146-98c9-2be6e9593488) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-24963 |
vulnerable | 2026-06-03 14:55:06.164185 |
Details available
CRITICAL (9.8)
A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.This CVE tracks the stack-based buffer overflow that occurs at offset `0xb6e84` of v1.2.10.9 of the P3-550E firmware.
Published: 2024-05-28T15:30:16.410Z
Updated: 2025-02-13T17:40:42.505Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24962 |
vulnerable | 2026-06-03 14:55:06.163340 |
Details available
CRITICAL (9.8)
A stack-based buffer overflow vulnerability exists in the Programming Software Connection FileSelect functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to stack-based buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.This CVE tracks the stack-based buffer overflow that occurs at offset `0xb6e98` of v1.2.10.9 of the P3-550E firmware.
Published: 2024-05-28T15:30:16.326Z
Updated: 2025-02-13T17:40:41.938Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24947 |
vulnerable | 2026-06-03 14:55:06.160259 |
Details available
HIGH (8.2)
A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This CVE tracks the heap corruption that occurs at offset `0xb68c4` of version 1.2.10.9 of the P3-550E firmware, which occurs when a call to `memset` relies on an attacker-controlled length value and corrupts any trailing heap allocations.
Published: 2024-05-28T15:30:18.231Z
Updated: 2025-02-13T17:40:36.885Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24946 |
vulnerable | 2026-06-03 14:55:06.159348 |
Details available
HIGH (8.2)
A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This CVE tracks the heap corruption that occurs at offset `0xb686c` of version 1.2.10.9 of the P3-550E firmware, which occurs when a call to `memset` relies on an attacker-controlled length value and corrupts any trailing heap allocations.
Published: 2024-05-28T15:30:18.127Z
Updated: 2025-02-13T17:40:36.211Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24851 |
vulnerable | 2026-06-03 14:55:05.923477 |
Details available
HIGH (7.5)
A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a buffer overflow. An attacker can send an unauthenticated packet to trigger this vulnerability.
Published: 2024-05-28T15:30:18.716Z
Updated: 2025-02-13T17:40:31.857Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23601 |
vulnerable | 2026-06-03 14:55:04.132571 |
Details available
CRITICAL (9.8)
A code injection vulnerability exists in the scan_lib.bin functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted scan_lib.bin can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.
Published: 2024-05-28T15:30:13.904Z
Updated: 2025-02-13T17:39:48.000Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-23315 |
vulnerable | 2026-06-03 14:55:02.251604 |
Details available
HIGH (7.5)
A read-what-where vulnerability exists in the Programming Software Connection IMM 01A1 Memory Read functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to a disclosure of sensitive information. An attacker can send an unauthenticated packet to trigger this vulnerability.
Published: 2024-05-28T15:30:15.074Z
Updated: 2025-02-13T17:39:40.449Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-22187 |
vulnerable | 2026-06-03 14:54:59.965994 |
Details available
CRITICAL (9.1)
A write-what-where vulnerability exists in the Programming Software Connection Remote Memory Diagnostics functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to an arbitrary write. An attacker can send an unauthenticated packet to trigger this vulnerability.
Published: 2024-05-28T15:30:15.762Z
Updated: 2025-02-13T17:33:33.730Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-21785 |
vulnerable | 2026-06-03 14:54:50.753452 |
Details available
CRITICAL (9.8)
A leftover debug code vulnerability exists in the Telnet Diagnostic Interface functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted series of network requests can lead to unauthorized access. An attacker can send a sequence of requests to trigger this vulnerability.
Published: 2024-05-28T15:30:14.463Z
Updated: 2025-02-13T17:33:19.226Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.