Описание
A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interfaces have been installed and are in use) and all versions of OpenEnterprise 3.1 through 3.3.3, where a specially crafted script could execute code on the OpenEnterprise Server.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия от 3.1 (включая) до 3.3.3 (включая)
Одно из
cpe:2.3:a:emerson:openenterprise_scada_server:*:*:*:*:*:*:*:*
cpe:2.3:a:emerson:openenterprise_scada_server:2.8.3:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.0115
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-122
CWE-787
Связанные уязвимости
github
больше 3 лет назад
A Heap-based Buffer Overflow was found in Emerson OpenEnterprise SCADA Server 2.83 (if Modbus or ROC Interfaces have been installed and are in use) and all versions of OpenEnterprise 3.1 through 3.3.3, where a specially crafted script could execute code on the OpenEnterprise Server.
EPSS
Процентиль: 78%
0.0115
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-122
CWE-787