Описание
Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32538 and CVE-2023-32201.
Ссылки
- Third Party Advisory
- Release Notes
- Third Party Advisory
- Release Notes
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:fujielectric:tellus:4.0.15.0:*:*:*:*:*:*:*
cpe:2.3:a:fujielectric:tellus_lite:4.0.15.0:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
больше 2 лет назад
Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32538 and CVE-2023-32201.
EPSS
Процентиль: 23%
0.00076
Низкий
7.8 High
CVSS3
Дефекты
CWE-787
CWE-787