Lucene search
IcscertCVE-2023-5068HistorySep 21, 2023 - 11:15 p.m.
CVE-2023-5068
2023-09-2123:15:13
CWE-787
icscert
web.nvd.nist.gov
30
cve-2023-5068
delta electronics diascreen
buffer overflow
nvd
security vulnerability
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.099
Percentile
94.9%
Delta Electronics DIAScreen may write past the end of an allocated
buffer while parsing a specially crafted input file. This could allow an
attacker to execute code in the context of the current process.
Affected configurations
Node
deltawwdiascreenRange<1.3.2
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "DIAScreen",
"vendor": "Delta Electronics",
"versions": [
{
"lessThan": "v1.3.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
zdi
zdi
cvelist
cvelist
CVE-2023-5068 Delta Electronics DIAScreen Out-of-bounds Write
2023-09-21 22:01:07
prion
prion
Design/Logic Flaw
2023-09-21 23:15:00
nvd
nvd
CVE-2023-5068
2023-09-21 23:15:13
ics
ics
Delta Electronics DIAScreen
2023-09-21 12:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.099
Percentile
94.9%
Related for CVE-2023-5068