Vulnerability Details CVE-2018-14794
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. The device does not perform a check on the length/size of a project file before copying the entire contents of the file to a heap-based buffer.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2018-14794
-
cpe:2.3:h:fujielectric:alpha5_smart_loader:-
-
cpe:2.3:o:fujielectric:alpha5_smart_loader_firmware:*