Описание
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, the received data is copied to a stack buffer. An off-by-3 condition can occur, resulting in a stack-based buffer overflow.
Ссылки
- Broken Link
- Product
- Vendor Advisory
- Broken Link
- Product
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.2.5.7 (исключая)
Одновременно
cpe:2.3:o:swisslog-healthcare:hmi-3_control_panel_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:swisslog-healthcare:hmi-3_control_panel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 74%
0.00802
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. In the tcpTxThread function, the received data is copied to a stack buffer. An off-by-3 condition can occur, resulting in a stack-based buffer overflow.
EPSS
Процентиль: 74%
0.00802
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787