← Voltar para CVEs
CVE-2018-10623
N/ADescricao
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado6/18/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
deltaww:delta_industrial_automation_dopsoft
Fraquezas (CWE)
CWE-125CWE-125
Referencias
http://www.securityfocus.com/bid/104375(ics-cert@hq.dhs.gov)
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01(ics-cert@hq.dhs.gov)
http://www.securityfocus.com/bid/104375(af854a3a-2127-422b-91ae-364da2661108)
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.