← voltar
CVE-2018-5440

CVE-2018-5440

EPSS 3.1%CWE-121
Vexday Risk Score
3Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS EPSS 3.1%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
15 fev 2018Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
A Stack-based Buffer Overflow issue was discovered in 3S-Smart CODESYS Web Server. Specifically: all Microsoft Windows (also WinCE) based CODESYS web servers running stand-alone Version 2.3, or as part of the CODESYS runtime system running prior to Version V1.1.9.19. A crafted request may cause a buffer overflow and could therefore execute arbitrary code on the web server or lead to a denial-of-service condition due to a crash in the web server.
Produtos afetados
n/a · 3S-Smart Software Solutions GmbH CODESYS Web Server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://ics-cert.us-cert.gov/advisories/ICSA-18-032-02http://www.securityfocus.com/bid/102909