Описание
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device does not perform a check on the length/size of a project file before copying the entire contents of the file to a heap-based buffer.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 3.7 (включая)
Одновременно
cpe:2.3:o:fujielectric:alpha5_smart_loader_firmware:*:*:*:*:*:*:*:undefined
cpe:2.3:h:fujielectric:alpha5_smart_loader:-:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00665
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-122
CWE-119
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device does not perform a check on the length/size of a project file before copying the entire contents of the file to a heap-based buffer.
EPSS
Процентиль: 71%
0.00665
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-122
CWE-119