CVE-2024-6918 Schneider Electric CVE debrief

Who should care

Organizations operating Schneider Electric Accutech Manager for industrial wireless sensor network management, particularly in critical infrastructure environments where availability of monitoring systems is essential for operational safety and continuity.

Technical summary

CVE-2024-6918 is a Classic Buffer Overflow (CWE-120) in Schneider Electric Accutech Manager affecting versions 2.08.01 and earlier. The vulnerability exists in the network request handling component listening on TCP port 2536. An unauthenticated remote attacker can send a specially crafted request that triggers the buffer overflow, causing the Accutech Manager process to crash. This results in a complete denial of service condition for the management platform. The CVSS 3.1 vector AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H indicates network accessibility, low attack complexity, no required privileges or user interaction, and high impact to availability only. Schneider Electric has remediated this vulnerability in version 2.10.0.

Defensive priority

high

Recommended defensive actions

• Upgrade Accutech Manager to version 2.10.0 or later, which contains a fix for this vulnerability
• Verify software revision using instructions provided with the installation package
• Restrict network access to port 2536/TCP to authorized management hosts only
• Monitor for unexpected crashes or unavailability of Accutech Manager services
• Apply defense-in-depth strategies for industrial control systems per CISA guidance

Evidence notes

CISA ICS advisory ICSA-24-354-06 published 2024-08-13 documents this vulnerability with CVSS 3.1 score 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Schneider Electric security notice SEVD-2024-226-01 confirms vendor fix in version 2.10.0.

Official resources