Lucene search
HistoryNov 15, 2023 - 6:15 a.m.
CVE-2023-47582
vulnerability
tellus
uninitialized pointer
disclosure
arbitrary code
crafted file
information security
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Access of uninitialized pointer vulnerability exists in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file (X1, V8, or V9 file), information may be disclosed and/or arbitrary code may be executed.
Affected configurations
Node
fujielectrictellusRange≤4.0.17.0
ORfujielectrictellus_liteRange≤4.0.17.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fujielectric | tellus | * | cpe:2.3:a:fujielectric:tellus:*:*:*:*:*:*:*:* |
| fujielectric | tellus_lite | * | cpe:2.3:a:fujielectric:tellus_lite:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-47582
2023-11-15 05:41:09
cve
cve
CVE-2023-47582
2023-11-15 06:15:28
prion
prion
Null pointer dereference
2023-11-15 06:15:00
vulnrichment
vulnrichment
CVE-2023-47582
2023-11-15 05:41:09
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
19.7%
Related for NVD:CVE-2023-47582