Vulnerabilities > CVE-2023-0103 - Access of Memory Location After End of Buffer vulnerability in Ls-Electric Xbc-Dn32U Firmware 01.80

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

ls-electric

CWE-788

NVD

Published: 2023-02-15

Updated: 2023-11-07

Summary

If an attacker were to access memory locations of LS ELECTRIC XBC-DN32U with operating system version 01.80 that are outside of the communication buffer, the device stops operating. This could allow an attacker to cause a denial-of-service condition.

Vulnerable Configurations

Part	Description	Count
OS	Ls-Electric LS Electric XBC Dn32U Firmware 01.80	1
Hardware	Ls-Electric LS Electric XBC Dn32U -	1

Common Weakness Enumeration (CWE)

CWE-788 - Access of Memory Location After End of Buffer

References

https://www.cisa.gov/uscert/ics/advisories/icsa-23-040-02