First published: Tue Mar 13 2018(Updated: )
In Omron CX-Supervisor Versions 3.30 and prior, parsing malformed project files may cause a heap-based buffer overflow.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Omron CX-Supervisor | <=3.30 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this weakness is CVE-2018-7519.
The severity of CVE-2018-7519 is medium with a CVSS score of 5.3.
Omron CX-Supervisor Versions 3.30 and prior become vulnerable when parsing malformed project files, which can cause a heap-based buffer overflow.
The impact of CVE-2018-7519 is a heap-based buffer overflow, which may allow an attacker to execute arbitrary code or cause a denial of service.
To mitigate the vulnerability in Omron CX-Supervisor, update to a version later than 3.30.