First published: Wed Nov 15 2023(Updated: )
Multiple improper restriction of operations within the bounds of a memory buffer issues exist in TELLUS V18.104.22.168 and earlier and TELLUS Lite V22.214.171.124 and earlier. If a user opens a specially crafted file (X1, V8, or V9 file), information may be disclosed and/or arbitrary code may be executed.
|Affected Software||Affected Version||How to fix|
|Fujielectric Tellus Lite||<=126.96.36.199|
The severity of CVE-2023-47580 is high with a severity value of 7.8.
The affected software for CVE-2023-47580 is Fujielectric Tellus version up to and inclusive of 188.8.131.52 and Fujielectric Tellus Lite version up to and inclusive of 184.108.40.206.
CVE-2023-47580 can be exploited by opening a specially crafted file (X1, V8, or V9 file).
To mitigate CVE-2023-47580, it is recommended to update TELLUS V220.127.116.11 and earlier, as well as TELLUS Lite V18.104.22.168 and earlier to a fixed version.
You can find more information about CVE-2023-47580 at the following references: [link1],[link2],[link3]