Remote Code Execution Vulnerability in Fuji Electric V-Server
CVE-2018-14809

9.8CRITICAL

Key Information:

Vendor

Fuji Electric

Status
V-server
Vendor
CVE Published:
26 September 2018

What is CVE-2018-14809?

A use after free vulnerability has been discovered in Fuji Electric V-Server versions 4.0.3.0 and earlier. This flaw could potentially allow an attacker to execute arbitrary code remotely, posing significant risks to system integrity and security. Proper patching and updating of affected versions is essential to mitigate this vulnerability.

Affected Version(s)

V-Server 4.0.3.0 and prior

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-254-01
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.