Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device does not perform a check on the length/size of a project file before copying the entire contents of the file to a heap-based buffer.
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HFujielectric Alpha5 Smart Loader
HWFujielectricwszystkie wersjeFujielectric Alpha5 Smart Loader Firmware
OSFujielectric≤ 3.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Powiązane podatności
CVE-2022-21228HIGH7.8ten sam produkt
The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute ar...
CVE-2022-24383HIGH7.8ten sam produkt
The affected product is vulnerable to an out-of-bounds read, which may result in code execution
CVE-2022-21214HIGH7.8ten sam produkt
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code execution.
CVE-2019-13520HIGH7.8ten sam produkt
Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. An att...
CVE-2018-14788MEDIUM5.3ten sam produkt
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. A buffer overflow information disclosure vulnerabili...