CVE-2023-27410

Name of the Vulnerable Software and Affected Versions SCALANCE LPE9403 versions prior to V2.1

Description A heap-based buffer overflow issue was found in the edgebox web app binary. This occurs when a backup password longer than 255 characters is supplied, causing the binary to crash. An authenticated privileged attacker could exploit this to cause a denial of service.

Recommendations For SCALANCE LPE9403 versions prior to V2.1, update to version V2.1 or later to resolve the issue. As a temporary workaround, consider restricting the length of backup passwords to 255 characters or less to prevent the binary from crashing.