CVE-2017-6023 - CERT CVE
ID CVE-2017-6023
Sažetak An issue was discovered in Fatek Automation PLC Ethernet Module. The affected Ether_cfg software configuration tool runs on the following Fatek PLCs: CBEH versions prior to V3.6 Build 170215, CBE versions prior to V3.6 Build 170215, CM55E versions prior to V3.6 Build 170215, and CM25E versions prior to V3.6 Build 170215. A stack-based buffer overflow vulnerability has been identified, which may allow remote code execution or crash the affected device.
Reference
CVSS
Base: 9.0
Impact: 8.5
Exploitability:10.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL COMPLETE
CVSS vektor AV:N/AC:L/Au:N/C:P/I:P/A:C
Zadnje važnije ažuriranje 28-10-2021 - 11:54
Objavljeno 16-03-2017 - 04:59