Vulnerabilities > CVE-2018-14809 - Use After Free vulnerability in Fujielectric V-Server Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

fujielectric

CWE-416

critical

NVD

Published: 2018-09-26

Updated: 2019-10-09

Summary

Fuji Electric V-Server 4.0.3.0 and prior, A use after free vulnerability has been identified, which may allow remote code execution.

Vulnerable Configurations

Part	Description	Count
OS	Fujielectric Fujielectric V Server Firmware 2.0.0.0 Fujielectric V Server Firmware 2.0.0.4 Fujielectric V Server Firmware 2.0.0.5 Fujielectric V Server Firmware 2.0.1.0 Fujielectric V Server Firmware 2.0.3.0 Fujielectric V Server Firmware 2.0.5.0 Fujielectric V Server Firmware 2.1.0.0 Fujielectric V Server Firmware 2.2.0.0 Fujielectric V Server Firmware 2.2.2.0 Fujielectric V Server Firmware 2.2.4.0 Fujielectric V Server Firmware 2.2.5.0 Fujielectric V Server Firmware 2.2.6.0 Fujielectric V Server Firmware 2.2.10.0 Fujielectric V Server Firmware 2.2.11.0 Fujielectric V Server Firmware 2.2.12.0 Fujielectric V Server Firmware 2.2.13.0 Fujielectric V Server Firmware 2.2.15.0 Fujielectric V Server Firmware 2.2.16.0 Fujielectric V Server Firmware 2.2.17.0 Fujielectric V Server Firmware 2.2.18.0 Fujielectric V Server Firmware 2.2.20.0 Fujielectric V Server Firmware 2.2.21.0 Fujielectric V Server Firmware 2.2.22.0 Fujielectric V Server Firmware 2.2.23.0 Fujielectric V Server Firmware 2.2.24.0 Fujielectric V Server Firmware 2.2.25.0 Fujielectric V Server Firmware 2.2.26.0 Fujielectric V Server Firmware 2.2.27.0 Fujielectric V Server Firmware 2.2.28.0 Fujielectric V Server Firmware 2.2.29.0 Fujielectric V Server Firmware 2.2.30.0 Fujielectric V Server Firmware 2.2.31.0 Fujielectric V Server Firmware 2.2.32.0 Fujielectric V Server Firmware 2.2.33.0 Fujielectric V Server Firmware 2.2.34.0 Fujielectric V Server Firmware 2.2.35.0 Fujielectric V Server Firmware 2.2.36.0 Fujielectric V Server Firmware 2.2.37.0 Fujielectric V Server Firmware 2.2.38.0 Fujielectric V Server Firmware 2.2.39.0 Fujielectric V Server Firmware 3.0.1.0 Fujielectric V Server Firmware 3.0.2.0 Fujielectric V Server Firmware 3.1.0.0 Fujielectric V Server Firmware 3.1.1.0 Fujielectric V Server Firmware 3.2.0.0 Fujielectric V Server Firmware 3.3.0.0 Fujielectric V Server Firmware 3.3.1.0 Fujielectric V Server Firmware 3.3.2.0 Fujielectric V Server Firmware 3.3.4.0 Fujielectric V Server Firmware 3.3.5.0 Fujielectric V Server Firmware 3.3.6.0 Fujielectric V Server Firmware 3.3.7.0 Fujielectric V Server Firmware 3.3.8.0 Fujielectric V Server Firmware 3.3.9.0 Fujielectric V Server Firmware 3.3.10.0 Fujielectric V Server Firmware 3.3.11.0 Fujielectric V Server Firmware 3.3.12.0 Fujielectric V Server Firmware 3.3.13.0 Fujielectric V Server Firmware 3.3.14.0 Fujielectric V Server Firmware 3.3.15.0 Fujielectric V Server Firmware 3.3.16.0 Fujielectric V Server Firmware 3.3.17.0 Fujielectric V Server Firmware 3.3.18.0 Fujielectric V Server Firmware 3.3.21.0 Fujielectric V Server Firmware 3.3.22.0 Fujielectric V Server Firmware 4.0.0.0 Fujielectric V Server Firmware 4.0.1.0 Fujielectric V Server Firmware 4.0.3.0	68
Hardware	Fujielectric Fujielectric V Server -	1

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://ics-cert.us-cert.gov/advisories/ICSA-18-254-01