CVE-2023-28728

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-28728
A stack-based buffer overflow in Panasonic Control FPWIN Pro versions 7.6.0.3 and all previous versions may allow arbitrary code execution when opening specially crafted project files.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://industry.panasonic.eu/factory-automation/programmable-logic-controllers-plc/plc-software/programming-software-control-fpwin-pro Product
Configurations

Configuration 1 (hide)

cpe:2.3:a:panasonic:control_fpwin_pro:*:*:*:*:*:*:*:*
History

31 Jul 2023, 20:58

Type Values Removed Values Added
CWE CWE-787
References (MISC) https://industry.panasonic.eu/factory-automation/programmable-logic-controllers-plc/plc-software/programming-software-control-fpwin-pro - (MISC) https://industry.panasonic.eu/factory-automation/programmable-logic-controllers-plc/plc-software/programming-software-control-fpwin-pro - Product
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.8
First Time Panasonic control Fpwin Pro
Panasonic
CPE cpe:2.3:a:panasonic:control_fpwin_pro:*:*:*:*:*:*:*:*

21 Jul 2023, 07:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-07-21 07:15

Updated : 2024-02-28 20:33

NVD link : CVE-2023-28728

Mitre link : CVE-2023-28728

CVE.ORG link : CVE-2023-28728

JSON object : View

Products Affected

panasonic

  • control_fpwin_pro
CWE
CWE-787

Out-of-bounds Write

CWE-121

Stack-based Buffer Overflow


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024