CVE-2018-7521

Опубликовано: 21 мар. 2018

Источник: nvd

CVSS3: 5.3

CVSS2: 4.6

EPSS Низкий

Описание

In Omron CX-Supervisor Versions 3.30 and prior, use after free vulnerabilities can be exploited when CX Supervisor parses a specially crafted project file.

Ссылки

http://www.securityfocus.com/bid/103394
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-072-01
Mitigation
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/103394
Third Party Advisory
VDB Entry
https://ics-cert.us-cert.gov/advisories/ICSA-18-072-01
Mitigation
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:omron:cx-supervisor:*:*:*:*:*:*:*:*

Версия до 3.30 (включая)

EPSS

Процентиль: 29%

0.00106

Низкий

5.3 Medium

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-416

Связанные уязвимости

GHSA-jxqm-2cjv-rxvx