First published: Wed Apr 15 2020(Updated: )
Eaton HMiSoft VU3 (HMIVU3 runtime not impacted), Version 3.00.23 and prior, however, the HMIVU runtimes are not impacted by these issues. A specially crafted input file could trigger an out-of-bounds read when loaded by the affected product.
Credit: ics-cert@hq.dhs.gov
Affected Software | Affected Version | How to fix |
---|---|---|
Eaton Hmisoft Vu3 Firmware | <=3.00.23 | |
Eaton HMiSoft VU3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Eaton HMiSoft issue is CVE-2020-10637.
CVE-2020-10637 has a severity level of medium.
Eaton HMiSoft VU3 firmware version 3.00.23 and prior are affected.
No, the HMIVU runtimes are not impacted by CVE-2020-10637.
A specially crafted input file could trigger the out-of-bounds read in the affected product.