Buffer Overflow Vulnerability in Eaton ELCSoft
CVE-2018-7511

5.3MEDIUM

Key Information:

Vendor

Eaton

Status
Eaton Elcsoft
Vendor
CVE Published:
20 March 2018

What is CVE-2018-7511?

Eaton ELCSoft versions up to 2.04.02 are vulnerable to a buffer overflow due to the processing of specially crafted files. This vulnerability could potentially enable an adversary to execute arbitrary code remotely, posing significant risks to affected systems. Ensuring that all installations of ELCSoft are updated to a secure version is paramount for safeguarding against exploitation.

Affected Version(s)

Eaton ELCSoft 2.04.02 and prior

References

http://www.eaton.com/ecm/idcplg?IdcService=GET_FILE&allow...
x_refsource_CONFIRM
https://ics-cert.us-cert.gov/advisories/ICSA-18-065-03
x_refsource_MISC
http://www.securityfocus.com/bid/103301
vdb-entryx_refsource_BID

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.