CVE-2017-9638: Buffer Overflow
First published: Tue Apr 17 2018(Updated: )
Mitsubishi E-Designer, Version 7.52 Build 344 contains six code sections which may be exploited to overwrite the stack. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mitsubishi Electric E-Designer | =7.52 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-9638?
CVE-2017-9638 is considered a critical vulnerability due to its potential for arbitrary code execution.
How do I fix CVE-2017-9638?
To fix CVE-2017-9638, upgrade to a later version of Mitsubishi E-Designer that addresses this vulnerability.
What are the potential impacts of exploiting CVE-2017-9638?
Exploiting CVE-2017-9638 can lead to arbitrary code execution, data integrity compromise, denial of service, and system crashes.
Which versions of Mitsubishi E-Designer are affected by CVE-2017-9638?
Mitsubishi E-Designer version 7.52 is affected by CVE-2017-9638.
Is there a workaround for CVE-2017-9638?
There are no widely recommended workarounds for CVE-2017-9638, and the best course of action is to apply the available security update.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mitsubishielectric
- canonical/mitsubishi electric e-designer
- version/mitsubishi electric e-designer/7.52