Ariele Caltabiano

**Name of the Vulnerable Software and Affected Versions** Fatek Automation PM Designer V3 version 2.1.2.2 Fatek Automation FV Designer version 1.2.8.0 **Description** A malicious attacker can trigger a remote buffer overflow in the Communication Server. **Recommendations** For Fatek Automation PM Designer V3 version 2.1.2.2, update to a version that fixes this issue. For Fatek Automation FV Designer version 1.2.8.0, update to a version that fixes this issue.

**Name of the Vulnerable Software and Affected Versions** VT-Designer version 2.1.7.31 **Description** The issue arises from the program populating objects with user-supplied input via a file without first checking for validity, allowing attacker-supplied input to be written to known memory locations. This may cause the program to crash or allow remote code execution. **Recommendations** For VT-Designer version 2.1.7.31, as a temporary workaround, consider restricting the ability of the program to populate objects with user-supplied input via files until a patch is available. Avoid using files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** VT-Designer version 2.1.7.31 **Description** The issue arises when the program reads the contents of a file into another heap-based buffer, potentially causing the program to crash or allowing remote code execution. This is related to a heap-based buffer overflow during file parsing. **Recommendations** For VT-Designer version 2.1.7.31, consider restricting access to file parsing functionality until a patch is available. As a temporary workaround, avoid using the file parsing feature to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Omron CX-Supervisor versions 3.4.1.0 and prior **Description** The issue allows an attacker to force the application to read a value outside of an array by tampering with the value of an offset when processing project files. This can lead to information disclosure. **Recommendations** For Omron CX-Supervisor versions 3.4.1.0 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Delta Industrial Automation TPEditor versions 1.90 and prior **Description** The issue is related to multiple stack-based buffer overflow vulnerabilities that can be exploited by processing specially crafted project files. These vulnerabilities may allow an attacker to remotely execute arbitrary code due to a lack of user input validation before copying data from project files onto the stack. **Recommendations** For versions 1.90 and prior, update to a version later than 1.90 to resolve the issue. As a temporary workaround, consider restricting the processing of project files from untrusted sources to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Delta Industrial Automation TPEditor versions 1.90 and prior **Description** The issue is related to multiple out-of-bounds write vulnerabilities that can be exploited by processing specially crafted project files. These files lack user input validation, which may cause the system to write outside the intended buffer area and may allow remote code execution. **Recommendations** For versions 1.90 and prior, update to a version later than 1.90 to resolve the issue. As a temporary workaround, consider restricting the processing of project files from untrusted sources until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics ISPSoft versions 3.0.5 and prior **Description** The issue allows an attacker to cause the application to read past the boundary allocated to a stack object by opening a crafted file. This could potentially allow execution of code under the context of the application. **Recommendations** For Delta Electronics ISPSoft versions 3.0.5 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric V-Server Lite versions 4.0.3.0 and prior **Description** The issue is related to a buffer overflow that can occur when parsing a maliciously crafted project file. This may allow an attacker to execute arbitrary code, cause a denial of service, or disclose protected information. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For Fuji Electric V-Server Lite versions 4.0.3.0 and prior, consider updating to a version that fixes the buffer overflow issue, as no specific workaround is provided for these versions. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Eaton ELCSoft versions 2.04.02 and prior **Description** The issue allows remote execution of arbitrary code through buffer overflow caused by specially crafted files. **Recommendations** For Eaton ELCSoft versions 2.04.02 and prior, update to a version later than 2.04.02 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric V-Server VPR versions 4.0.1.0 and prior **Description** A Stack-based Buffer Overflow issue was discovered, which may allow remote code execution. **Recommendations** For Fuji Electric V-Server VPR versions 4.0.1.0 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Foxit Reader version 8.3.0.14878 **Description** This issue allows remote attackers to execute arbitrary code on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the `app.launchURL` method due to the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this to execute code under the context of the current process. **Recommendations** For Foxit Reader version 8.3.0.14878, consider disabling the `app.launchURL` method as a temporary workaround until a patch is available. Restrict access to potentially malicious pages or files to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Advantech WebOP (affected versions not specified) **Description** A Heap-Based Buffer Overflow issue was discovered, where a maliciously crafted project file may trigger a heap-based buffer overflow. This could crash the process and allow an attacker to execute arbitrary code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fuji Electric V-Server versions 3.3.22.0 and prior **Description** A memory corruption issue has been identified, which may allow remote code execution due to improper restriction of operations within the bounds of a memory buffer. **Recommendations** For Fuji Electric V-Server versions 3.3.22.0 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics WPLSoft versions prior to V2.42.11 Delta Electronics ISPSoft versions prior to 3.02.11 Delta Electronics PMSoft versions prior to 2.10.10 **Description** The issue is related to multiple instances of heap-based buffer overflows. These overflows may allow malicious files to cause the execution of arbitrary code or a denial of service. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. **Recommendations** For Delta Electronics WPLSoft versions prior to V2.42.11, update to version V2.42.11 or later. For Delta Electronics ISPSoft versions prior to 3.02.11, update to version 3.02.11 or later. For Delta Electronics PMSoft versions prior to 2.10.10, update to version 2.10.10 or later.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics WPLSoft versions prior to V2.42.11 Delta Electronics ISPSoft versions prior to 3.02.11 Delta Electronics PMSoft versions prior to 2.10.10 **Description** An issue was discovered in the software, where multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected software. This could potentially lead to remote code execution. **Recommendations** For Delta Electronics WPLSoft versions prior to V2.42.11, update to version V2.42.11 or later. For Delta Electronics ISPSoft versions prior to 3.02.11, update to version 3.02.11 or later. For Delta Electronics PMSoft versions prior to 2.10.10, update to version 2.10.10 or later.

**Name of the Vulnerable Software and Affected Versions** Fatek Automation PM Designer version 2.1.2.2 Fatek Automation FV Designer version 1.2.8.0 **Description** An issue allows an attacker to trigger a stack-based buffer overflow by sending additional valid packets, potentially causing a crash. Additionally, a malicious attacker can trigger a remote buffer overflow on the Fatek Communication Server. **Recommendations** For Fatek Automation PM Designer version 2.1.2.2, consider disabling the communication server functionality until a patch is available. For Fatek Automation FV Designer version 1.2.8.0, restrict access to the vulnerable communication server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Fatek Automation PM Designer version 2.1.2.2 Fatek Automation FV Designer version 1.2.8.0 **Description** The issue allows an attacker to cause a crash or execute arbitrary code due to improper restriction of operations within the bounds of a memory buffer. This can be achieved by sending additional valid packets. **Recommendations** For Fatek Automation PM Designer version 2.1.2.2, update to a version that addresses the improper restriction of operations within the bounds of a memory buffer to prevent potential crashes or arbitrary code execution. For Fatek Automation FV Designer version 1.2.8.0, update to a version that addresses the improper restriction of operations within the bounds of a memory buffer to prevent potential crashes or arbitrary code execution.

**Name of the Vulnerable Software and Affected Versions** IBHsoftec S7-SoftPLC versions prior to 4.12b **Description** The issue is caused by a heap-based buffer overflow in the object memory when reading a network packet that is larger than the available space. This can allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. **Recommendations** For versions prior to 4.12b, update to version 4.12b or later to resolve the issue. As a temporary workaround, consider restricting access to the network to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Rockwell Automation RSLogix Micro Starter Lite (affected versions not specified) Rockwell Automation RSLogix Micro Developer (affected versions not specified) Rockwell Automation RSLogix 500 Starter Edition (affected versions not specified) Rockwell Automation RSLogix 500 Standard Edition (affected versions not specified) Rockwell Automation RSLogix 500 Professional Edition (affected versions not specified) **Description** The issue allows remote attackers to execute arbitrary code via a crafted RSS project file, due to a buffer overflow in the project file parsing mechanism. This can lead to remote code execution. **Recommendations** For Rockwell Automation RSLogix Micro Starter Lite, update to a version that fixes the buffer overflow issue. For Rockwell Automation RSLogix Micro Developer, update to a version that fixes the buffer overflow issue. For Rockwell Automation RSLogix 500 Starter Edition, update to a version that fixes the buffer overflow issue. For Rockwell Automation RSLogix 500 Standard Edition, update to a version that fixes the buffer overflow issue. For Rockwell Automation RSLogix 500 Professional Edition, update to a version that fixes the buffer overflow issue. As a temporary workaround, consider restricting the use of crafted RSS project files until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Eaton ELCSoft versions 2.4.01 and earlier **Description** The issue is related to a heap-based buffer overflow in the elcsoft.exe component, allowing remote authenticated users to execute arbitrary code by providing a crafted file. **Recommendations** For versions 2.4.01 and earlier, update to a version later than 2.4.01 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.