CVE-2023-0250
CVE-2023-0250

7.8HIGH

Key Information:

Vendor: Delta Electronics
Status: Diascreen
Vendor: CVE Published:; 8 February 2023

Summary

Delta Electronics DIAScreen versions 1.2.1.23 and earlier are susceptible to a stack-based buffer overflow vulnerability. This could enable an attacker to remotely execute arbitrary code on the affected system, posing significant security risks. Organizations using these versions should prioritize upgrading to mitigate potential exploits.

Affected Version(s)

DIAScreen All versions <= 1.2.1.23

References

https://www.cisa.gov/uscert/ics/advisories/icsa-23-033-01

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 8, 2023
Vulnerability Reserved
Jan 12, 2023

Credit

Natnael Samson (@NattiSamson)

Trend Micro’s Zero Day Initiative