CVE-2018-14793

Опубликовано: 21 авг. 2018

Источник: nvd

CVSS3: 8.8

CVSS2: 5.8

EPSS Низкий

Описание

DeltaV Versions 11.3.1, 12.3.1, 13.3.0, 13.3.1, and R5 is vulnerable to a buffer overflow exploit through an open communication port to allow arbitrary code execution.

Ссылки

http://www.securityfocus.com/bid/105105
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-228-01
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/105105
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-228-01
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:emerson:deltav:11.3.1:*:*:*:*:*:*:*

cpe:2.3:a:emerson:deltav:12.3.1:*:*:*:*:*:*:*

cpe:2.3:a:emerson:deltav:13.3.0:*:*:*:*:*:*:*

cpe:2.3:a:emerson:deltav:13.3.1:*:*:*:*:*:*:*

cpe:2.3:a:emerson:deltav:r5:*:*:*:*:*:*:*

EPSS

Процентиль: 48%

0.00247

Низкий

8.8 High

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-121

CWE-119

Связанные уязвимости

GHSA-cwwh-9rwx-j74g