CVE-2023-43821

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 18, 2024

Updated: Jan 20, 2024

CWE ID 119

CWE ID 120

Summary

CVE-2023-43821 is a newly discovered vulnerability affecting Delta Electronics' DOPSoft industrial automation software. The issue involves a stack-based buffer overflow that occurs when processing the wLogTitlesActionLen field in a DPS file. An attacker can exploit this remote code execution vulnerability without authentication, by having a user open a specially crafted DPS file, posing a significant risk to industrial networks. Users are urged to apply the forthcoming patch as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sw1jom
https://www.cve.org/CVERecord?id=CVE-2023-43821
https://nvd.nist.gov/vuln/detail/CVE-2023-43821

Back to Vulnerability Database

CVE-2023-43821

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations