CVE-2018-5452
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A Stack-based Buffer Overflow issue was discovered in Emerson Process Management ControlWave Micro Process Automation Controller: ControlWave Micro [ProConOS v.4.01.280] firmware: CWM v.05.78.00 and prior. A stack-based buffer overflow vulnerability caused by sending crafted packets on Port 20547 could force the PLC to change its state into halt mode.
Se ha descubierto un problema de desbordamiento de búfer basado en pila en Emerson Process Management ControlWave Micro Process Automation Controller: ControlWave Micro [ProConOS v.4.01.280] con firmware: CWM v.05.78.00 y anteriores. Una vulnerabilidad de desbordamiento de búfer basado en pila provocada por el envío de paquetes manipulados en el puerto 20547 podría forzar al PLC a cambiar su estado a modo halt (detención).
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-01-12 CVE Reserved
- 2018-03-07 CVE Published
- 2024-01-15 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-121: Stack-based Buffer Overflow
- CWE-787: Out-of-bounds Write
CAPEC
References (2)
URL | Tag | Source |
---|---|---|
http://www.securityfocus.com/bid/103180 | Third Party Advisory | |
https://ics-cert.us-cert.gov/advisories/ICSA-18-058-03 | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Emerson Search vendor "Emerson" | Controlwave Micro Firmware Search vendor "Emerson" for product "Controlwave Micro Firmware" | <= 05.78.00 Search vendor "Emerson" for product "Controlwave Micro Firmware" and version " <= 05.78.00" | - |
Affected
| in | Emerson Search vendor "Emerson" | Controlwave Micro Search vendor "Emerson" for product "Controlwave Micro" | - | - |
Safe
|