- Description
- Stack-based buffer overflow in an unspecified DLL file in a DTM development kit in Schneider Electric Unity Pro, SoMachine, SoMove, SoMove Lite, Modbus Communication Library 2.2.6 and earlier, CANopen Communication Library 1.0.2 and earlier, EtherNet/IP Communication Library 1.0.0 and earlier, EM X80 Gateway DTM (MB TCP/SL), Advantys DTM for OTB, Advantys DTM for STB, KINOS DTM, SOLO DTM, and Xantrex DTMs allows remote attackers to execute arbitrary code via unspecified vectors.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- nvd@nist.gov
- CWE-119
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:schneider-electric:somachine:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9BAB3925-C7D6-4206-AE6D-3C4EAB89917F"
},
{
"criteria": "cpe:2.3:a:schneider-electric:somove:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "73CE63A7-81C5-43F1-89E3-53FD8EB3CD37"
},
{
"criteria": "cpe:2.3:a:schneider-electric:somove_lite:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8B6D0A17-E249-463C-87BC-9606FE69B4E6"
},
{
"criteria": "cpe:2.3:a:schneider-electric:unity_pro:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C1B1BD93-EA36-40EB-802A-2FCFA16A0B5D"
}
],
"operator": "OR"
}
]
}
]