CVE-2024-38389

Summary

There is an Out-of-bounds read vulnerability in TELLUS (v4.0.19.0 and earlier) and TELLUS Lite (v4.0.19.0 and earlier). If a user opens a specially crafted file, information may be disclosed and/or arbitrary code may be executed.

Affected Software

VendorProductVersion RangeStatus
FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.TELLUSv4.0.19.0 and earlieraffected
FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.TELLUS Litev4.0.19.0 and earlieraffected

Weaknesses

  • CWE-125: Out-of-bounds read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References