ByteOS Network

NVD Vulnerability Details :

CVE-2024-6758

Modified

Source-info@cert.vde.com

Published At-12 Aug, 2024 | 13:38

Updated At-22 Aug, 2025 | 09:15

Improper Privilege Management in Sprecher Automation SPRECON-E below version 8.71j allows a remote attacker with low privileges to save unauthorized protection assignments.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Type: Secondary

Version: 3.1

Base score: 6.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CPE Matches

sprecher-automation>>sprecon-e_cp-2500_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e_cp-2500_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_cp-2500>>-

cpe:2.3:h:sprecher-automation:sprecon-e_cp-2500:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dd6-2_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-p_dd6-2_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dd6-2>>-

cpe:2.3:h:sprecher-automation:sprecon-e-p_dd6-2:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-c_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-c_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-c>>-

cpe:2.3:h:sprecher-automation:sprecon-e-c:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_ap-2200_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e_ap-2200_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_ap-2200>>-

cpe:2.3:h:sprecher-automation:sprecon-e_ap-2200:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_cp-2131_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e_cp-2131_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_cp-2131>>-

cpe:2.3:h:sprecher-automation:sprecon-e_cp-2131:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_cp-2330_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e_cp-2330_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e_cp-2330>>-

cpe:2.3:h:sprecher-automation:sprecon-e_cp-2330:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dq6-1_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-p_dq6-1_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dq6-1>>-

cpe:2.3:h:sprecher-automation:sprecon-e-p_dq6-1:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dl6-1_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-p_dl6-1_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_dl6-1>>-

cpe:2.3:h:sprecher-automation:sprecon-e-p_dl6-1:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_ds6-0_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-p_ds6-0_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-p_ds6-0>>-

cpe:2.3:h:sprecher-automation:sprecon-e-p_ds6-0:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-edir_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-edir_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-edir>>-

cpe:2.3:h:sprecher-automation:sprecon-edir:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-t3_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-t3_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-t3>>-

cpe:2.3:h:sprecher-automation:sprecon-e-t3:-:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-t3_ax-3110_firmware>>Versions before 8.71j(exclusive)

cpe:2.3:o:sprecher-automation:sprecon-e-t3_ax-3110_firmware:*:*:*:*:*:*:*:*

sprecher-automation>>sprecon-e-t3_ax-3110>>-

cpe:2.3:h:sprecher-automation:sprecon-e-t3_ax-3110:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-266	Primary	info@cert.vde.com
NVD-CWE-noinfo	Secondary	nvd@nist.gov

CWE ID: CWE-266

Type: Primary

Source: info@cert.vde.com

CWE ID: NVD-CWE-noinfo

Type: Secondary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/SPR-2407171_de.pdf	info@cert.vde.com	Vendor Advisory

Hyperlink: https://www.sprecher-automation.com/fileadmin/itSecurity/PDF/SPR-2407171_de.pdf

Source: info@cert.vde.com

Resource:

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History