{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T21:17:36.042","vulnerabilities":[{"cve":{"id":"CVE-2024-6596","sourceIdentifier":"info@cert.vde.com","published":"2024-09-10T08:15:03.350","lastModified":"2024-10-01T12:26:45.967","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An unauthenticated remote attacker can run malicious c# code included in curve files and execute commands in the users context."},{"lang":"es","value":"Un atacante remoto no autenticado puede ejecutar código C# malicioso incluido en archivos de curva y ejecutar comandos en el contexto de los usuarios."}],"metrics":{"cvssMetricV31":[{"source":"info@cert.vde.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"info@cert.vde.com","type":"Secondary","description":[{"lang":"en","value":"CWE-94"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:endress:echo_curve_viewer:*:*:*:*:*:*:*:*","versionEndExcluding":"6.0.0","matchCriteriaId":"086D71F2-A7F5-48DC-8BF2-BDDF337AFD74"},{"vulnerable":true,"criteria":"cpe:2.3:a:endress:fieldcare_sfe500_package:*:*:*:*:*:*:*:*","versionEndExcluding":"1.40.1","matchCriteriaId":"EB7DDCFA-E0C7-401B-89B2-48A61CF28020"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:endress:field_xpert_smt79_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"1ECC6E57-9FD0-4106-8C9F-C17AE827F8C8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:endress:field_xpert_smt79:-:*:*:*:*:*:*:*","matchCriteriaId":"BC7856B2-75C6-40E1-B36B-5FE0F6CF1B03"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:endress:field_xpert_smt77_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"16F7E7E7-C221-4498-B286-E029CF4EAFDD"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:endress:field_xpert_smt77:-:*:*:*:*:*:*:*","matchCriteriaId":"22CAA382-7A0F-4C46-B7F2-873BCB2D7C16"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:endress:field_xpert_smt70_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"4105E9FA-0192-4247-A876-F522EB3743C5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:endress:field_xpert_smt70:-:*:*:*:*:*:*:*","matchCriteriaId":"2E2D48C9-563F-4F90-9D93-E31F746305E1"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:endress:field_xpert_smt50_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"9BB5DE59-7030-4CA6-8749-EADA19A374FE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:endress:field_xpert_smt50:-:*:*:*:*:*:*:*","matchCriteriaId":"36A029E4-3C6E-4106-A80D-FD6B0A1CD8CA"}]}]}],"references":[{"url":"https://cert.vde.com/en/advisories/VDE-2024-041","source":"info@cert.vde.com","tags":["Third Party Advisory"]}]}}]}