CVE-2024-47135

CVSS V2 None CVSS V3 None

Description

Stack-based buffer overflow vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.14.0 and earlier. Having a user open a specially crafted project file which was saved using Kostac PLC Programming Software Version 1.6.9.0 and earlier may cause a denial-of-service (DoS) condition, arbitrary code execution, and/or information disclosure because the issues exist in parsing of KPP project files.

Overview

CVE ID
CVE-2024-47135

Assigner
jpcert

Vulnerability Status
PUBLISHED

Published Version
2024-10-03T02:53:46.102Z

Last Modified Date
2024-10-03T02:53:46.102Z

Weakness Enumerations

CWE	URL
CWE-121	http://cwe.mitre.org/data/definitions/121.html

References

Reference URL	Reference Tags
https://www.electronics.jtekt.co.jp/en/topics/202410026928/
https://www.electronics.jtekt.co.jp/jp/topics/2024100217388/
https://jvn.jp/en/vu/JVNVU92808077/

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2024-47135
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47135

History

Created	Old Value	New Value	Data Type	Notes
2024-10-06 23:39:19				Added to TrackCVE