Skip to main content

Elcsoft

3 CVEs product

Monthly

CVE-2018-7511 MEDIUM This Month

In Eaton ELCSoft versions 2.04.02 and prior, there are multiple cases where specially crafted files could cause a buffer overflow which, in turn, may allow remote execution of arbitrary code. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD
CVSS 3.0
5.3
EPSS
2.1%
CVE-2016-4512 HIGH This Week

Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and earlier allows remote attackers to execute arbitrary code via a long packet. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD
CVSS 3.0
7.3
EPSS
6.4%
CVE-2016-4509 MEDIUM This Month

Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and earlier allows remote authenticated users to execute arbitrary code via a crafted file. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD
CVSS 3.0
6.0
EPSS
2.5%
EPSS 2% CVSS 5.3
MEDIUM This Month

In Eaton ELCSoft versions 2.04.02 and prior, there are multiple cases where specially crafted files could cause a buffer overflow which, in turn, may allow remote execution of arbitrary code. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD
EPSS 6% CVSS 7.3
HIGH This Week

Stack-based buffer overflow in ELCSimulator in Eaton ELCSoft 2.4.01 and earlier allows remote attackers to execute arbitrary code via a long packet. Rated high severity (CVSS 7.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD
EPSS 3% CVSS 6.0
MEDIUM This Month

Heap-based buffer overflow in elcsoft.exe in Eaton ELCSoft 2.4.01 and earlier allows remote authenticated users to execute arbitrary code via a crafted file. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

RCE Buffer Overflow Elcsoft
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy