Lucene search
IcscertCVE-2023-0123HistoryFeb 03, 2023 - 3:15 a.m.
CVE-2023-0123
2023-02-0303:15:08
CWE-787
CWE-121
icscert
web.nvd.nist.gov
37
delta electronics
dopsoft
cve-2023-0123
vulnerability
remote code execution
stack-based buffer overflow
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.8%
Delta Electronics DOPSoft versions 4.00.16.22 and prior are vulnerable to a stack-based buffer overflow, which could allow an attacker to remotely execute arbitrary code when a malformed file is introduced to the software.
Affected configurations
Node
deltawwdopsoftRange<4.00.16.22
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DOPSoft",
"vendor": "Delta Industrial Automation",
"versions": [
{
"lessThanOrEqual": "4.00.16.22",
"status": "affected",
"version": "all versions",
"versionType": "custom"
}
]
}
]Related
zdi
zdi
nvd
nvd
CVE-2023-0123
2023-02-03 03:15:08
prion
prion
Stack overflow
2023-02-03 03:15:00
cvelist
cvelist
CVE-2023-0123 CVE-2023-0123
2023-02-02 22:57:48
ics
ics
Delta Electronics DOPSoft
2023-01-31 12:00:00
nessus
nessus
Delta DOPSoft <= 4.00.16.22 Multiple Vulnerabilities
2023-03-21 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
36.8%
Related for CVE-2023-0123