The affected application lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-06-06T16:25:34.270Z
Updated: 2024-08-02T14:53:30.847Z
Reserved: 2023-05-09T17:30:31.053Z
Link: CVE-2023-31278
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-06-06T17:15:14.573
Modified: 2023-06-12T16:32:50.127
Link: CVE-2023-31278
Redhat
No data.