CVE-2023-5908
9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Summary
KEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| PTC | KEPServerEX | 0 <= 6.14.263.0 | affected |
| PTC | ThingWorx Kepware Server | 0 <= 6.14.263.0 | affected |
| PTC | ThingWorx Industrial Connectivity | All versions | affected |
| PTC | OPC-Aggregator | 0 <= 6.14 | affected |
| PTC | ThingWorx Kepware Edge | 0 <= 1.7 | affected |
| Rockwell Automation | KEPServer Enterprise | 0 <= 6.14.263.0 | affected |
| GE Gigital | Industrial Gateway Server | 0 <= 7.614 | affected |
| Software Toolbox | TOP Server | 0 <= 6.14.263.0 | affected |
Weaknesses
- CWE-122: CWE-122 Heap-Based Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.