CVE-2024-0257

RoboDK v5.5.4 is vulnerable to heap-based buffer overflow while processing a specific project file. The resulting memory corruption may crash the application.

CVSS v3 3.3 LOW

3.3^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.cisa.gov/news-events/ics-advisories/icsa-24-107-04

Configurations

No configuration.

History

18 Apr 2024, 13:04

Type	Values Removed	Values Added
Summary		(es) RoboDK v5.5.4 es vulnerable al desbordamiento de búfer de almacenamiento dinámico mientras procesa un archivo de proyecto específico. La corrupción de memoria resultante puede bloquear la aplicación.

17 Apr 2024, 20:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-04-17 20:15

Updated : 2024-04-18 13:04

NVD link : CVE-2024-0257

Mitre link : CVE-2024-0257

CVE.ORG link : CVE-2024-0257

JSON object : View

Products Affected

No product.

CWE

CWE-122

Heap-based Buffer Overflow

3.3 /10