CVE-2024-47131

CVSS V2 None CVSS V3 None
Description
If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code, a stack-based buffer overflow in BACnetObjectInfo can be exploited, allowing the attacker to remotely execute arbitrary code.
Overview
  • CVE ID
  • CVE-2024-47131
  • Assigner
  • icscert
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-11-11T14:53:13.470Z
  • Last Modified Date
  • 2024-11-11T16:06:36.044Z
Weakness Enumerations
CWE URL
CWE-121 http://cwe.mitre.org/data/definitions/121.html
References
Reference URL Reference Tags
https://www.cisa.gov/news-events/ics-advisories/icsa-24-312-02
https://www.deltaww.com/en-US/Cybersecurity_Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2024-47131
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47131
History
Created Old Value New Value Data Type Notes
2024-11-12 13:23:40 Added to TrackCVE