Stack-based Buffer Overflow in Delta Electronics DIAScreen Software
CVE-2024-7502

7.8HIGH

Key Information:

Vendor: Deltaww
Status: Diascreen
Vendor: CVE Published:; 6 August 2024

What is CVE-2024-7502?

A crafted DPA file can exploit a vulnerability in Delta Electronics DIAScreen, enabling a stack-based buffer overflow. This condition could allow an attacker to execute arbitrary code, posing significant security risks to systems utilizing this software. Organizations using DIAScreen should prioritize the assessment of their deployments to mitigate potential exploitation scenarios.

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-2...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 6, 2024

CVE-2024-7502 Data

JSON

Deltaww

What is CVE-2024-7502?

References

CVSS V3.1

Timeline