Buffer Overflow Vulnerability in SolarView Compact by Contec
CVE-2023-27518

8.8HIGH

Key Information:

Vendor: Contec Co., Ltd.
Status: Solarview Compact
Vendor: CVE Published:; 23 May 2023

🔔 Create Contec Co., Ltd. Vulnerability Alert

What is CVE-2023-27518?

A buffer overflow vulnerability in SolarView Compact products allows remote authenticated attackers to execute arbitrary code by manipulating multiple setting pages. Affected versions include SV-CPT-MC310 and SV-CPT-MC310F prior to version 8.10. This issue necessitates immediate attention to prevent potential exploitation.

Affected Version(s)

SolarView Compact SV-CPT-MC310 versions prior to Ver.8.10, and SV-CPT-MC310F versions prior to Ver.8.10

References

https://www.contec.com/jp/download/donwload-list/?itemid=...

https://www.contec.com/jp/api/downloadlogger?download=/-/...

https://jvn.jp/en/vu/JVNVU92106300/

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 23, 2023
Vulnerability Reserved
Mar 15, 2023