CVE-2023-43816

Name of the Vulnerable Software and Affected Versions Delta Industrial Automation DOPSoft version 2

Description A buffer overflow vulnerability exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wKPFStringLen field of a DPS file. An anonymous attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve code execution.

Recommendations For Delta Industrial Automation DOPSoft version 2, avoid opening specially crafted DPS files until a patch is available. As a temporary workaround, consider restricting access to DPS files or implementing additional security measures to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.