CVEブラウザに戻る

CVE-2019-13514

HIGH

7.8

CVSS Severity Score

EPSS Score0.0500%

EPSS Percentile44.31th

Published2019年8月15日

Last Modified2024年11月21日

Vulnerability Description

In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a use-after-free vulnerability, which may allow information disclosure, remote code execution, or crash of the application.

Affected Platforms (CPE)

📦

Deltaww

Delta Industrial Automation Dopsoft

<= 4.00.06.15

References & Advisories

🔗 https://www.us-cert.gov/ics/advisories/icsa-19-225-01

🔗 https://www.zerodayinitiative.com/advisories/ZDI-19-717/

🔗 https://www.us-cert.gov/ics/advisories/icsa-19-225-01

🔗 https://www.zerodayinitiative.com/advisories/ZDI-19-717/

関連する脆弱性情報

CVE-2018-106239.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where ...

CVE-2018-106179.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value ...

CVE-2018-106219.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value...

CVE-2018-54767.8

A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or pr...