CVE-2023-43820

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 18, 2024

Updated: Jan 20, 2024

CWE ID 119

CWE ID 120

Summary

CVE-2023-43820 is a newly identified buffer overflow vulnerability affecting Delta Electronics' DOPSoft industrial automation software. The issue lies in the parsing process of the wLogTitlesPrevValueLen field found in DPS files. A maliciously crafted DPS file can trigger this vulnerability, enabling a remote, unauthenticated attacker to execute arbitrary code on the targeted system. This poses a significant risk, as successful exploitation could lead to serious compromise of industrial control systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sw1WvF
https://www.cve.org/CVERecord?id=CVE-2023-43820
https://nvd.nist.gov/vuln/detail/CVE-2023-43820

Back to Vulnerability Database

CVE-2023-43820

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations