Vulnerability Details CVE-2023-38748
Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.7%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2023-38748
-
cpe:2.3:a:omron:cx-programmer:-
-
cpe:2.3:a:omron:cx-programmer:9.65
-
cpe:2.3:a:omron:cx-programmer:9.66
-
cpe:2.3:a:omron:cx-programmer:9.70
-
cpe:2.3:a:omron:cx-programmer:9.76.1
-
cpe:2.3:a:omron:cx-programmer:9.77
-
cpe:2.3:a:omron:cx-programmer:9.78