Vulners
Lucene search
CVE-2023-5908 Heap Based Buffer Overflow in PTC KEPServerEx
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | The vulnerabilities of the OPC-server software programs such as KEPServerEX, ThingWorx Kepware Server, ThingWorx Industrial Connectivity, OPC-Aggregator, ThingWorx Kepware Edge, Rockwell Automation KEPServer Enterprise, GE Digital Industrial Gateway Server, and Software Toolbox TOP Server are related to the possibility of buffer overflows in dynamic memory. This allows attackers to access protected information or cause service failures. | 11 Dec 202300:00 | – | bdu_fstec |
 | CVE-2023-5908 | 21 Dec 202310:12 | – | circl |
 | PTC KEPserverEX Security Vulnerability | 30 Nov 202300:00 | – | cnnvd |
 | CVE-2023-5908 | 30 Nov 202322:03 | – | cve |
 | EUVD-2023-58181 | 3 Oct 202520:07 | – | euvd |
 | PTC KEPServerEx | 30 Nov 202307:00 | – | ics |
 | CVE-2023-5908 | 30 Nov 202322:15 | – | nvd |
 | Buffer overflow | 30 Nov 202322:15 | – | prion |
 | CVE-2023-5908 | 23 May 202505:07 | – | redhatcve |
[
{
"defaultStatus": "unaffected",
"product": "KEPServerEX",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Kepware Server",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Industrial Connectivity",
"vendor": "PTC",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unaffected",
"product": "OPC-Aggregator",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "6.14",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ThingWorx Kepware Edge",
"vendor": "PTC",
"versions": [
{
"lessThanOrEqual": "1.7",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "KEPServer Enterprise",
"vendor": "Rockwell Automation ",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Industrial Gateway Server",
"vendor": "GE Gigital",
"versions": [
{
"lessThanOrEqual": "7.614",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unaffected",
"product": "TOP Server",
"vendor": "Software Toolbox",
"versions": [
{
"lessThanOrEqual": "6.14.263.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]| Source | Link |
|---|---|
| cisa | www.cisa.gov/news-events/ics-advisories/icsa-23-334-03 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
30 Nov 2023 22:03Current
9.5High risk
Vulners AI Score9.5
CVSS 3.19.1
EPSS0.00037