Eaton HMiSoft VU3 (HMIVU3 runtime not impacted), Version 3.00.23 and prior, however, the HMIVU runtimes are not impacted by these issues. A specially crafted input file could cause a buffer overflow when loaded by the affected product.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-105-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-04-15 10:15
Updated : 2020-04-22 10:16
NVD link : CVE-2020-10639
Mitre link : CVE-2020-10639
JSON object : View
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Products Affected
eaton
- hmisoft_vu3_firmware
- hmisoft_vu3