Fuji Electric V-Server


基本信息

时间: 2018-09-11

风险等级: 未知

ICSA: ICS Advisory (ICSA-18-254-01)

厂商: Fuji Electric

原地址: https://www.us-cert.gov/ics/advisories/ICSA-18-254-01


1. EXECUTIVE SUMMARY

  • CVSS v3 7.3
  • ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available
  • Vendor: Fuji Electric
  • Equipment: V-Server
  • Vulnerabilities: Use-After Free, Untrusted Pointer Dereference, Heap-based Buffer Overflow, Out-of-Bounds Write, Integer Underflow, Out-of-Bounds Read, and Stack-based Buffer Overflow

2. RISK EVALUATION

Successful exploitation of these vulnerabilities could allow for remote code execution on the device, causing a denial of service condition or information exposure.

3. TECHNICAL DETAILS