CyberSec.Space Logo
Back to CVE Browser

CVE-2018-10623

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile27.05th
PublishedJun 18, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash.

Affected Platforms (CPE)

πŸ“¦
Deltaww

Delta Industrial Automation Dopsoft

<= 4.00.04

References & Advisories

πŸ”— http://www.securityfocus.com/bid/104375
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01
πŸ”— http://www.securityfocus.com/bid/104375
πŸ”— https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01

Related Vulnerabilities

CVE-2018-106219.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value...

CVE-2018-106179.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value ...

CVE-2019-135147.8

In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a us...

CVE-2018-54767.8

A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or pr...