Out-of-Bounds Read Vulnerability in Delta Electronics DOPSoft
CVE-2021-27455

5.5MEDIUM

Key Information:

Vendor: Deltaww
Status: Delta Electronics Dopsoft
Vendor: CVE Published:; 2 July 2021

What is CVE-2021-27455?

Delta Electronics DOPSoft, a software tool for industrial automation, is affected by a vulnerability that permits an out-of-bounds read during the processing of project files. This flaw can be exploited by an attacker to gain access to sensitive information, potentially leading to data breaches or unauthorized disclosure of confidential data.

Affected Version(s)

Delta Electronics DOPSoft DOPSoft Version 4.0.10.17 and prior

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-182-03

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 2, 2021
Vulnerability Reserved
Feb 19, 2021

CVE-2021-27455 Data

JSON

Deltaww

What is CVE-2021-27455?

Affected Version(s)

References

CVSS V3.1

Timeline