Rewterz Threat Alert – Trickbot – IoCs
July 1, 2020Rewterz Threat Advisory – ICS Mitsubishi Electric Factory Automation Products
July 2, 2020Rewterz Threat Alert – Trickbot – IoCs
July 1, 2020Rewterz Threat Advisory – ICS Mitsubishi Electric Factory Automation Products
July 2, 2020Severity
Medium
Analysis Summary
CVE-2020-10597
Multiple out-of-bounds read vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to read information and/or crash the application.
CVE-2020-14482
Opening a specially crafted project file may overflow the heap, which may allow remote code execution, disclosure/modification of information, or cause the application to crash.
Impact
Application crash
Affected Vendors
Delta Electronics
Affected Products
DOPSoft Version 4.00.08.15 and prior
Remediation
Refer to ICS advisory for the list of affected products and upgraded patches.