Lucene search
JpcertCVE-2023-32270HistoryJun 19, 2023 - 5:15 a.m.
CVE-2023-32270
2023-06-1905:15:09
CWE-119
jpcert
web.nvd.nist.gov
15
cve-2023-32270
memory access issue
tellus
information disclosure
arbitrary code execution
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
28.9%
Access of memory location after end of buffer issue exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution.
Affected configurations
Node
fujielectrictellusMatch4.0.15.0
ORfujielectrictellus_liteMatch4.0.15.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fujielectric | tellus | 4.0.15.0 | cpe:2.3:a:fujielectric:tellus:4.0.15.0:*:*:*:*:*:*:* |
| fujielectric | tellus_lite | 4.0.15.0 | cpe:2.3:a:fujielectric:tellus_lite:4.0.15.0:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.",
"product": "TELLUS and TELLUS Lite",
"versions": [
{
"version": "v4.0.15.0 and earlier",
"status": "affected"
}
]
}
]Related
cvelist
cvelist
CVE-2023-32270
2023-06-19 00:00:00
prion
prion
Information disclosure
2023-06-19 05:15:00
nvd
nvd
CVE-2023-32270
2023-06-19 05:15:09
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
28.9%
Related for CVE-2023-32270