CyberSec.Space Logo
返回 CVE 浏览器

CVE-2018-10623

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1350%
EPSS Percentile27.05th
Published2018年6月18日
Last Modified2024年11月21日

Vulnerability Description

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash.

Affected Platforms (CPE)

📦
Deltaww

Delta Industrial Automation Dopsoft

<= 4.00.04

References & Advisories

🔗 http://www.securityfocus.com/bid/104375
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01
🔗 http://www.securityfocus.com/bid/104375
🔗 https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01

相关漏洞威胁

CVE-2018-106219.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length stack buffer where a value...

CVE-2018-106179.8

Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior utilizes a fixed-length heap buffer where a value ...

CVE-2019-135147.8

In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a us...

CVE-2018-54767.8

A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial Automation DOPSoft, Version 4.00.01 or pr...