A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesPrevValueLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution.
References
Configurations
History
20 Jan 2024, 18:53
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-120 | |
CPE | cpe:2.3:a:deltaww:dopsoft:*:*:*:*:*:*:*:* | |
First Time |
Deltaww dopsoft
Deltaww |
|
References | () https://blog.exodusintel.com/2024/01/18/delta-electronics-delta-industrial-automation-dopsoft-dps-file-wlogtitlesprevvaluelen-buffer-overflow-remote-code-execution/ - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
18 Jan 2024, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-01-18 22:15
Updated : 2024-02-28 20:54
NVD link : CVE-2023-43820
Mitre link : CVE-2023-43820
CVE.ORG link : CVE-2023-43820
JSON object : View
Products Affected
deltaww
- dopsoft