HIGH🇬🇧 English

CVE-2024-22811

CVSS 8.2v3.1pub. 2024-04-22upd. 2025-09-15

An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a Denial of Service (DoS) by disrupting the communication between the PathPilot controller and the CNC router via overwriting the Hostmot2 configuration cookie in the device memory.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
  • Tormach Pathpilot Controller

    APP
    Tormach
    2.9.6
  • Tormach Xstech Cnc Router

    HW
    Tormach
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2024-22808HIGH7.5ten sam produkt

An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to cause a Denial of Servi...

CVE-2024-22807MEDIUM6.5ten sam produkt

An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to erase a critical sector...

CVE-2024-22809MEDIUM6.5ten sam produkt

Incorrect access control in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to access ...

CVE-2024-22813MEDIUM4.4ten sam produkt

An issue in Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attackers to overwrite the hardcoded...

CVE-2024-22815MEDIUM5.3ten sam produkt

An issue in the communication protocol of Tormach xsTECH CNC Router, PathPilot Controller v2.9.6 allows attack...