Описание
WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 2.45.0 (включая)
cpe:2.3:a:deltaww:wplsoft:*:*:*:*:*:*:*:*
EPSS
Процентиль: 77%
0.01058
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-121
CWE-119
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length stack buffer where a value larger than the buffer can be read from a file into the buffer, causing the buffer to be overwritten, which may allow remote code execution or cause the application to crash.
EPSS
Процентиль: 77%
0.01058
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-121
CWE-119