CVE-2019-13513

Опубликовано: 15 авг. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger multiple out-of-bounds read vulnerabilities, which may allow information disclosure, remote code execution, or crash of the application.

Ссылки

https://www.us-cert.gov/ics/advisories/icsa-19-225-01
Mitigation
Third Party Advisory
US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-19-718/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-719/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-720/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-721/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-722/
Third Party Advisory
VDB Entry
https://www.us-cert.gov/ics/advisories/icsa-19-225-01
Mitigation
Third Party Advisory
US Government Resource
https://www.zerodayinitiative.com/advisories/ZDI-19-718/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-719/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-720/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-721/
Third Party Advisory
VDB Entry
https://www.zerodayinitiative.com/advisories/ZDI-19-722/
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:deltaww:delta_industrial_automation_dopsoft:*:*:*:*:*:*:*:*

Версия до 4.00.06.15 (включая)

EPSS

Процентиль: 75%

0.00862

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-125

Связанные уязвимости

GHSA-ff2p-47qg-55mj