CVE-2023-2575

🗓️ 08 May 2023 12:11:34Reported by CyberDanubeType

Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stack-based Buffer Overflow vulnerability

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-2575	8 May 202316:48	–	circl
CNNVD	Advantech 缓冲区错误漏洞	8 May 202300:00	–	cnnvd
Cvelist	CVE-2023-2575 Authenticated Buffer Overflow	8 May 202312:11	–	cvelist
EUVD	EUVD-2023-34053	3 Oct 202520:07	–	euvd
NVD	CVE-2023-2575	8 May 202313:15	–	nvd
Packet Storm	Advantech EKI-15XX Series Command Injection / Buffer Overflow	12 May 202300:00	–	packetstorm
Prion	Stack overflow	8 May 202313:15	–	prion
Positive Technologies	PT-2023-7944 · Advantech · Eki-1522 +2	8 May 202300:00	–	ptsecurity
Vulnrichment	CVE-2023-2575 Authenticated Buffer Overflow	8 May 202312:11	–	vulnrichment

NVD

Node

advantech eki-1521_firmwareRange≤1.21

AND

advantech eki-1521Match-

Node

advantech eki-1522_firmwareRange≤1.21

AND

advantech eki-1522Match-

Node

advantech eki-1524_firmwareRange≤1.21

AND

advantech eki-1524Match-

[
  {
    "defaultStatus": "unaffected",
    "product": "EKI-1524",
    "vendor": "Advantech",
    "versions": [
      {
        "lessThanOrEqual": "1.21",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EKI-1522",
    "vendor": "Advantech",
    "versions": [
      {
        "lessThanOrEqual": "1.21",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "EKI-1521",
    "vendor": "Advantech",
    "versions": [
      {
        "lessThanOrEqual": "1.21",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
seclists	www.seclists.org/fulldisclosure/2023/May/4
packetstormsecurity	www.packetstormsecurity.com/files/172307/Advantech-EKI-15XX-Series-Command-Injection-Buffer-Overflow.html
advantech	www.advantech.com/en/support/details/firmware
cyberdanube	www.cyberdanube.com/en/multiple-vulnerabilities-in-advantech-eki-15xx-series/
advantech	www.advantech.com/en/support/details/firmware
advantech	www.advantech.com/en/support/details/firmware

21 Nov 2024 07:58Current

8.7High risk

Vulners AI Score8.7

CVSS 3.18.8

EPSS0.02175

SSVC