CVE-2021-33007: Buffer Overflow
First published: Mon Aug 30 2021(Updated: )
A heap-based buffer overflow in Delta Electronics TPEditor: v1.98.06 and prior may be exploited by processing a specially crafted project file. Successful exploitation of this vulnerability may allow an attacker to execute arbitrary code.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Delta Industrial Automation TPEditor | <=1.98.06 | |
| Delta Electronics TPEditor: v1.98.06 and prior |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this heap-based buffer overflow?
The vulnerability ID for this heap-based buffer overflow is CVE-2021-33007.
What is the affected software of this vulnerability?
The affected software of this vulnerability is Delta Electronics TPEditor version 1.98.06 and prior.
How can this vulnerability be exploited?
This vulnerability can be exploited by processing a specially crafted project file.
What is the severity rating of CVE-2021-33007?
CVE-2021-33007 has a severity rating of 7.8 (high).
Is there a fix available for this vulnerability?
Please refer to the official advisory for mitigation steps and available fixes.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/references
- agent/severity
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/trending
- agent/tags
- agent/source
- vendor/deltaww
- canonical/delta industrial automation tpeditor
- version/delta industrial automation tpeditor/1.98.06
- vendor/delta electronics
- canonical/delta electronics tpeditor: v1.98.06 and prior