CVE-2023-27385

Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:omron:cx-drive:*:*:*:*:*:*:*:*

History

02 Aug 2023, 11:15

Type Values Removed Values Added
Summary Heap-based buffer overflow vulnerability exists in CX-Drive All models V3.01 and earlier. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed. Heap-based buffer overflow vulnerability exists in CX-Drive All models all versions. By having a user open a specially crafted SDD file, arbitrary code may be executed and/or information may be disclosed.

17 May 2023, 12:49

Type Values Removed Values Added
CPE cpe:2.3:a:omron:cx-drive:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
CWE CWE-787
References (MISC) https://jvn.jp/en/vu/JVNVU97372625/ - (MISC) https://jvn.jp/en/vu/JVNVU97372625/ - Mitigation, Third Party Advisory
References (MISC) https://www.ia.omron.com/product/vulnerability/OMSR-2023-004_en.pdf - (MISC) https://www.ia.omron.com/product/vulnerability/OMSR-2023-004_en.pdf - Vendor Advisory

10 May 2023, 06:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-05-10 06:15

Updated : 2024-02-04 23:37


NVD link : CVE-2023-27385

Mitre link : CVE-2023-27385

CVE.ORG link : CVE-2023-27385


JSON object : View

Products Affected

omron

  • cx-drive
CWE
CWE-787

Out-of-bounds Write