Vulnerability Details CVE-2023-47586
Multiple heap-based buffer overflow vulnerabilities exist in V-Server V4.0.18.0 and earlier and V-Server Lite V4.0.18.0 and earlier. If a user opens a specially crafted VPR file, information may be disclosed and/or arbitrary code may be executed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.9%
CVSS Severity
CVSS v3 Score 7.8
References
- https://hakko-elec.co.jp/site/download/03tellus_inf/index.php
- https://jvn.jp/en/vu/JVNVU93840158/
- https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php
- https://hakko-elec.co.jp/site/download/03tellus_inf/index.php
- https://jvn.jp/en/vu/JVNVU93840158/
- https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php
Products affected by CVE-2023-47586
-
cpe:2.3:a:fujielectric:v-server:3.3.24.0
-
cpe:2.3:a:fujielectric:v-server:4.0.10.0
-
cpe:2.3:a:fujielectric:v-server:4.0.11.0
-
cpe:2.3:a:fujielectric:v-server:4.0.12.0
-
cpe:2.3:a:fujielectric:v-server:4.0.13.0
-
cpe:2.3:a:fujielectric:v-server:4.0.13.0a
-
cpe:2.3:a:fujielectric:v-server:4.0.15.0
-
cpe:2.3:a:fujielectric:v-server:4.0.3.0
-
cpe:2.3:a:fujielectric:v-server:4.0.9.0