CRITICAL🇬🇧 English

CVE-2015-8299

CVSS 9.8v3.0pub. 2017-08-29upd. 2026-05-13

Buffer overflow in the Group messages monitor (Falcon) in KNX ETS 4.1.5 (Build 3246) allows remote attackers to execute arbitrary code via a crafted KNXnet/IP UDP packet.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Knx Ets

    APP
    Knx
    4.1.5
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje

Powiązane podatności

CVE-2023-4346HIGH7.5ten sam vendor

KNX devices that use KNX Connection Authorization and support Option 1 are, depending on the implementation, ...

CVE-2021-36799HIGH8.8ten sam vendor

KNX ETS5 through 5.7.6 uses the hard-coded password ETS5Password, with a salt value of Ivan Medvedev, allowing...

CVE-2021-43575MEDIUM5.5ten sam vendor

KNX ETS6 through 6.0.0 uses the hard-coded password ETS5Password, with a salt value of Ivan Medvedev, allowing...

CVE-2015-8299 — CRITICAL 9.8 | CVEbaza.pl