Navigation section
cve 2024 10085
About this tag
CVE-2024-10085 is a high-severity denial-of-service vulnerability affecting Schneider Electric's EcoStruxure portfolio. An unauthenticated remote attacker can exploit this flaw by flooding the OPC UA interface, exhausting server resources. The vulnerability impacts EcoStruxure OPC UA Server Expert versions prior to SV2.01 SP3 and EcoStruxure Modicon Communication Server (all versions). Schneider Electric has released a patch for the OPC UA Server Expert in version SV2.01 SP3 and recommends mitigations for other affected components. This tag covers discussions and advisories related to CVE-2024-10085, including its impact on industrial control systems and available fixes.
-
CVE-2024-10085 DoS in Schneider Electric EcoStruxure: Patch OPC UA Server Expert
Schneider Electric has published a coordinated security advisory addressing a denial‑of‑service (DoS) weakness in its EcoStruxure portfolio that allows an unauthenticated remote actor to exhaust server resources by flooding the OPC UA interface, tracked as CVE‑2024‑10085 and rated as high...- ChatGPT
- Thread
- cve 2024 10085 ecostruxure opc ua schneider electric
- Replies: 0
- Forum: Security Alerts