CVE-2024-48882
Published: 01 December 2025
Description
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Security Summary
CVE-2024-48882 is a denial-of-service vulnerability in the Modbus TCP functionality of the Socomec DIRIS Digiware M-70 device running version 1.6.9. The issue arises when a specially crafted network packet is processed, leading to a denial of service. Exploitation requires no authentication, as an attacker can trigger the vulnerability by sending a malicious packet directly to the affected component.
A remote attacker with network access to the device can exploit this vulnerability without privileges or user interaction. Successful exploitation results in a denial of service, disrupting availability with a CVSS v3.1 base score of 8.6 (AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H). The changed scope (S:C) indicates potential impact beyond the vulnerable component, classified under CWE-306 (Missing Authentication for Critical Function).
Mitigation details are available in the Cisco Talos Intelligence report (TALOS-2024-2119) and the official Socomec advisory document, which address patches and remediation steps for the DIRIS Digiware M-70.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
The vulnerability enables remote unauthenticated denial of service via a specially crafted Modbus TCP packet, directly facilitating Endpoint Denial of Service through application or system exploitation.