Vulnerabilities > CVE-2023-5460 - Unspecified vulnerability in Deltaww Wplsoft

CVSS 5.7 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

low complexity

deltaww

NVD

Published: 2023-10-09

Updated: 2024-11-21

Summary

A vulnerability was found in Delta Electronics WPLSoft up to 2.51 and classified as problematic. This issue affects some unknown processing of the component Modbus Data Packet Handler. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-241583. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerable Configurations

Part	Description	Count
Application	Deltaww Deltaww Wplsoft 2.0 Deltaww Wplsoft 2.1 Deltaww Wplsoft 2.2 Deltaww Wplsoft 2.3 Deltaww Wplsoft 2.4 Deltaww Wplsoft 2.5 Deltaww Wplsoft 2.6 Deltaww Wplsoft 2.7 Deltaww Wplsoft 2.8 Deltaww Wplsoft 2.9 Deltaww Wplsoft 2.10 Deltaww Wplsoft 2.11 Deltaww Wplsoft 2.12 Deltaww Wplsoft 2.13 Deltaww Wplsoft 2.14 Deltaww Wplsoft 2.15 Deltaww Wplsoft 2.16 Deltaww Wplsoft 2.17 Deltaww Wplsoft 2.18 Deltaww Wplsoft 2.19 Deltaww Wplsoft 2.20 Deltaww Wplsoft 2.21 Deltaww Wplsoft 2.22 Deltaww Wplsoft 2.23 Deltaww Wplsoft 2.24 Deltaww Wplsoft 2.25 Deltaww Wplsoft 2.26 Deltaww Wplsoft 2.27 Deltaww Wplsoft 2.28 Deltaww Wplsoft 2.29 Deltaww Wplsoft 2.30 Deltaww Wplsoft 2.31 Deltaww Wplsoft 2.32 Deltaww Wplsoft 2.33 Deltaww Wplsoft 2.34 Deltaww Wplsoft 2.35 Deltaww Wplsoft 2.36 Deltaww Wplsoft 2.37 Deltaww Wplsoft 2.38 Deltaww Wplsoft 2.39 Deltaww Wplsoft 2.40 Deltaww Wplsoft 2.41 Deltaww Wplsoft 2.42 Deltaww Wplsoft 2.42.11 Deltaww Wplsoft 2.43 Deltaww Wplsoft 2.44 Deltaww Wplsoft 2.45.0 Deltaww Wplsoft 2.46 Deltaww Wplsoft 2.47 Deltaww Wplsoft 2.48 Deltaww Wplsoft 2.49 Deltaww Wplsoft 2.50 Deltaww Wplsoft 2.51	53

Summary

Vulnerable Configurations

References