Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104375 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01 | Third Party Advisory US Government Resource |
Configurations
History
No history.
Information
Published : 2018-06-18 19:29
Updated : 2024-02-28 16:25
NVD link : CVE-2018-10623
Mitre link : CVE-2018-10623
CVE.ORG link : CVE-2018-10623
JSON object : View
Products Affected
deltaww
- delta_industrial_automation_dopsoft
CWE
CWE-125
Out-of-bounds Read