var-201806-0553
Vulnerability from variot
Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of fields in DPA files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code under the context of the current process. Delta Electronics Delta Industrial Automation DOPSoft is a set of human interface applications from Delta Electronics. A remote code-execution vulnerability 2. A stack-based buffer-overflow vulnerability 3. Failed attacks will cause denial of service conditions. DOPSoft 4.00.04 and prior are vulnerable
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "dopsoft",
"scope": null,
"trust": 1.4,
"vendor": "delta industrial automation",
"version": null
},
{
"_id": null,
"model": "delta industrial automation dopsoft",
"scope": "lte",
"trust": 1.0,
"vendor": "deltaww",
"version": "4.00.04"
},
{
"_id": null,
"model": "industrial automation dopsoft",
"scope": "lte",
"trust": 0.8,
"vendor": "delta",
"version": "4.00.04"
},
{
"_id": null,
"model": "electronics delta industrial automation dopsoft",
"scope": "lte",
"trust": 0.6,
"vendor": "delta",
"version": "\u003c=4.00.04"
},
{
"_id": null,
"model": "delta industrial automation dopsoft",
"scope": "eq",
"trust": 0.6,
"vendor": "deltaww",
"version": "4.00.04"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "4.0.4"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "4.0.1"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "2.0.5"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "eq",
"trust": 0.3,
"vendor": "delta",
"version": "2.00.04.09"
},
{
"_id": null,
"model": "electronics inc dopsoft",
"scope": "ne",
"trust": 0.3,
"vendor": "delta",
"version": "4.00.04.22"
},
{
"_id": null,
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "delta industrial automation dopsoft",
"version": "*"
}
],
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
},
{
"db": "NVD",
"id": "CVE-2018-10623"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:delta_electronics:delta_industrial_automation_dopsoft",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
}
]
},
"credits": {
"_id": null,
"data": "b0nd @garage4hackers",
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
}
],
"trust": 1.4
},
"cve": "CVE-2018-10623",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 10.0,
"id": "CVE-2018-10623",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "ZDI",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 8.6,
"id": "CVE-2018-10623",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "MEDIUM",
"trust": 1.4,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "CNVD-2018-12141",
"impactScore": 8.5,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 9.0,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 10.0,
"id": "e3007680-39ab-11e9-b812-000c29342cb1",
"impactScore": 8.5,
"integrityImpact": "PARTIAL",
"severity": "HIGH",
"trust": 0.2,
"vectorString": "AV:N/AC:L/Au:N/C:C/I:P/A:P",
"version": "2.9 [IVD]"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 3.9,
"id": "CVE-2018-10623",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "ZDI",
"id": "CVE-2018-10623",
"trust": 1.4,
"value": "MEDIUM"
},
{
"author": "nvd@nist.gov",
"id": "CVE-2018-10623",
"trust": 1.0,
"value": "CRITICAL"
},
{
"author": "NVD",
"id": "CVE-2018-10623",
"trust": 0.8,
"value": "Critical"
},
{
"author": "CNVD",
"id": "CNVD-2018-12141",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201806-809",
"trust": 0.6,
"value": "CRITICAL"
},
{
"author": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1",
"trust": 0.2,
"value": "CRITICAL"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
},
{
"db": "NVD",
"id": "CVE-2018-10623"
}
]
},
"description": {
"_id": null,
"data": "Delta Electronics Delta Industrial Automation DOPSoft version 4.00.04 and prior performs read operations on a memory buffer where the position can be determined by a value read from a .dpa file. This may cause improper restriction of operations within the bounds of the memory buffer, allow remote code execution, alter the intended control flow, allow reading of sensitive information, or cause the application to crash. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of fields in DPA files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this in conjunction with other vulnerabilities to execute code under the context of the current process. Delta Electronics Delta Industrial Automation DOPSoft is a set of human interface applications from Delta Electronics. A remote code-execution vulnerability\n2. A stack-based buffer-overflow vulnerability\n3. Failed attacks will cause denial of service conditions. \nDOPSoft 4.00.04 and prior are vulnerable",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-10623"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
}
],
"trust": 3.87
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2018-10623",
"trust": 4.9
},
{
"db": "ICS CERT",
"id": "ICSA-18-151-01",
"trust": 3.3
},
{
"db": "BID",
"id": "104375",
"trust": 1.9
},
{
"db": "CNVD",
"id": "CNVD-2018-12141",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534",
"trust": 0.8
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-5975",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-18-537",
"trust": 0.7
},
{
"db": "ZDI_CAN",
"id": "ZDI-CAN-5973",
"trust": 0.7
},
{
"db": "ZDI",
"id": "ZDI-18-535",
"trust": 0.7
},
{
"db": "IVD",
"id": "E3007680-39AB-11E9-B812-000C29342CB1",
"trust": 0.2
}
],
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
},
{
"db": "NVD",
"id": "CVE-2018-10623"
}
]
},
"id": "VAR-201806-0553",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
}
],
"trust": 1.7285714
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
}
]
},
"last_update_date": "2024-11-23T22:41:49.953000Z",
"patch": {
"_id": null,
"data": [
{
"title": "Delta Industrial Automation has issued an update to correct this vulnerability.",
"trust": 1.4,
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-151-01"
},
{
"title": "Top Page",
"trust": 0.8,
"url": "http://www.deltaww.com/"
},
{
"title": "Delta Industrial Automation DOPSoft cross-border read vulnerability patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/132877"
},
{
"title": "Delta Industrial Automation DOPSoft Buffer error vulnerability fix",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=81327"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-125",
"trust": 1.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "NVD",
"id": "CVE-2018-10623"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 4.7,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-18-151-01"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/104375"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-10623"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-10623"
},
{
"trust": 0.3,
"url": "http://www.deltaww.com/"
}
],
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
},
{
"db": "CNVD",
"id": "CNVD-2018-12141"
},
{
"db": "BID",
"id": "104375"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
},
{
"db": "NVD",
"id": "CVE-2018-10623"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-18-537",
"ident": null
},
{
"db": "ZDI",
"id": "ZDI-18-535",
"ident": null
},
{
"db": "CNVD",
"id": "CNVD-2018-12141",
"ident": null
},
{
"db": "BID",
"id": "104375",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2018-006534",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2018-10623",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2018-06-27T00:00:00",
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1",
"ident": null
},
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-537",
"ident": null
},
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-535",
"ident": null
},
{
"date": "2018-06-27T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-12141",
"ident": null
},
{
"date": "2018-05-31T00:00:00",
"db": "BID",
"id": "104375",
"ident": null
},
{
"date": "2018-08-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-006534",
"ident": null
},
{
"date": "2018-06-01T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201806-809",
"ident": null
},
{
"date": "2018-06-18T19:29:00.293000",
"db": "NVD",
"id": "CVE-2018-10623",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-537",
"ident": null
},
{
"date": "2018-06-05T00:00:00",
"db": "ZDI",
"id": "ZDI-18-535",
"ident": null
},
{
"date": "2018-11-05T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-12141",
"ident": null
},
{
"date": "2018-05-31T00:00:00",
"db": "BID",
"id": "104375",
"ident": null
},
{
"date": "2018-08-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-006534",
"ident": null
},
{
"date": "2019-10-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201806-809",
"ident": null
},
{
"date": "2024-11-21T03:41:41.207000",
"db": "NVD",
"id": "CVE-2018-10623",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability",
"sources": [
{
"db": "ZDI",
"id": "ZDI-18-537"
},
{
"db": "ZDI",
"id": "ZDI-18-535"
}
],
"trust": 1.4
},
"type": {
"_id": null,
"data": "Buffer error",
"sources": [
{
"db": "IVD",
"id": "e3007680-39ab-11e9-b812-000c29342cb1"
},
{
"db": "CNNVD",
"id": "CNNVD-201806-809"
}
],
"trust": 0.8
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.