Heap-Based Buffer Overflow in Delta Electronics TPEditor
CVE-2021-33007

7.8HIGH

Key Information:

Vendor: Deltaww
Status: Delta Electronics Tpeditor
Vendor: CVE Published:; 30 August 2021

What is CVE-2021-33007?

A heap-based buffer overflow vulnerability exists in Delta Electronics TPEditor versions prior to v1.98.06. Attackers can exploit this by processing specially crafted project files, which could allow for arbitrary code execution. This could potentially escalate security risks by granting unauthorized access to the system. It is essential for users to update their version of TPEditor to maintain security and protect against exploitation.

Affected Version(s)

Delta Electronics TPEditor TPEditor: v1.98.06 and prior

References

https://us-cert.cisa.gov/ics/advisories/icsa-21-236-03

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 30, 2021
Vulnerability Reserved
May 13, 2021

CVE-2021-33007 Data

JSON

Deltaww

What is CVE-2021-33007?

Affected Version(s)

References

CVSS V3.1

Timeline