Buffer Overflow Vulnerability in Kostac PLC Programming Software (Formerly Koyo PLC Programming Software) Version 1.6.9.0 and Earlier

Buffer Overflow Vulnerability in Kostac PLC Programming Software (Formerly Koyo PLC Programming Software) Version 1.6.9.0 and Earlier

CVE-2023-22421 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Out-of-bounds read vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.9.0 and earlier. The insufficient buffer size for the PLC program instructions leads to out-of-bounds read. As a result, opening a specially crafted project file may lead to information disclosure and/or arbitrary code execution.

Learn more about our Web Application Penetration Testing UK.