Lucene search
JpcertCVE-2023-47584HistoryNov 15, 2023 - 6:15 a.m.
CVE-2023-47584
2023-11-1506:15:28
CWE-787
jpcert
web.nvd.nist.gov
16
cve-2023-47584
out-of-bounds write
v-server
vpr file
information disclosure
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
19.7%
Out-of-bounds write vulnerability exists in V-Server V4.0.18.0 and earlier and V-Server Lite V4.0.18.0 and earlier. If a user opens a specially crafted VPR file, information may be disclosed and/or arbitrary code may be executed.
Affected configurations
Node
fujielectricv-serverRange≤4.0.18.0-
ORfujielectricv-serverRange≤4.0.18.0lite
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fujielectric | v-server | * | cpe:2.3:a:fujielectric:v-server:*:*:*:*:-:*:*:* |
| fujielectric | v-server | * | cpe:2.3:a:fujielectric:v-server:*:*:*:*:lite:*:*:* |
CNA Affected
[
{
"vendor": "FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.",
"product": "V-Server",
"versions": [
{
"version": "V4.0.18.0 and earlier",
"status": "affected"
}
]
},
{
"vendor": "FUJI ELECTRIC CO., LTD. and Hakko Electronics Co., Ltd.",
"product": "V-Server Lite",
"versions": [
{
"version": "V4.0.18.0 and earlier",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2023-47584
2023-11-15 06:15:28
cvelist
cvelist
CVE-2023-47584
2023-11-15 06:03:19
prion
prion
Cross site scripting
2023-11-15 06:15:00
vulnrichment
vulnrichment
CVE-2023-47584
2023-11-15 06:03:19
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.6
Confidence
High
EPSS
0.001
Percentile
19.7%
Related for CVE-2023-47584