PT-2018-12729 · Fuji Electric · Alpha5 Smart Loader

Michael Flanders

Published

2018-10-01

Updated

2019-10-09

CVE-2018-14794

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Fuji Electric Alpha5 Smart Loader versions 3.7 and prior

Description The issue arises because the device does not check the length or size of a project file before copying its entire contents to a heap-based buffer.

Recommendations For Fuji Electric Alpha5 Smart Loader versions 3.7 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-122

Related Identifiers

CVE-2018-14794

Affected Products

Alpha5 Smart Loader

PT-2018-12729 · Fuji Electric · Alpha5 Smart Loader

CVE-2018-14794

Weakness Enumeration

Related Identifiers

Affected Products

References · 4