An issue was discovered in Fatek Automation PLC Ethernet Module. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Buffer Overflow
RCE
Stack Overflow
Ethernet Module Configuration Tool Cbe Firmware
Ethernet Module Configuration Tool Cbeh Firmware
+2
NVD
CVSS 3.1
9.8
EPSS
4.0%
Heap-based buffer overflow in the PdfParser::ReadXRefSubsection function in base/PdfParser.cpp in PoDoFo allows attackers to have unspecified impact via vectors related to m_offsets.size. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Buffer Overflow
Podofo
NVD
CVSS 3.0
9.8
EPSS
0.3%