An issue was discovered in Fatek Automation PLC Ethernet Module. The affected Ether_cfg software configuration tool runs on the following Fatek PLCs: CBEH versions prior to V3.6 Build 170215, CBE versions prior to V3.6 Build 170215, CM55E versions prior to V3.6 Build 170215, and CM25E versions prior to V3.6 Build 170215. A stack-based buffer overflow vulnerability has been identified, which may allow remote code execution or crash the affected device.
[
{
"product": "Fatek Automation PLC Ethernet Module",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Fatek Automation PLC Ethernet Module"
}
]
}
]