CVE-2023-0103

If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow an attacker to cause a denial-of-service condition.
References
Link Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-23-040-02 Broken Link Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ls-electric:xbc-dn32u_firmware:01.80:*:*:*:*:*:*:*
cpe:2.3:h:ls-electric:xbc-dn32u:-:*:*:*:*:*:*:*

History

07 Nov 2023, 03:59

Type Values Removed Values Added
Summary If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow an attacker to cause a denial-of-service condition. If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow an attacker to cause a denial-of-service condition.

Information

Published : 2023-02-15 18:15

Updated : 2024-02-28 19:51


NVD link : CVE-2023-0103

Mitre link : CVE-2023-0103

CVE.ORG link : CVE-2023-0103


JSON object : View

Products Affected

ls-electric

  • xbc-dn32u_firmware
  • xbc-dn32u
CWE
CWE-788

Access of Memory Location After End of Buffer