CVE-2023-32538

Summary

Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32273 and CVE-2023-32201.

Affected Software

VendorProductVersion RangeStatus
FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.TELLUS and TELLUS Litev4.0.15.0 and earlieraffected

Weaknesses

  • Stack-based Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References