Delta Electronics Delta Industrial Automation DOPSoft DPS File Remote Code Execution Vulnerability

Delta Electronics Delta Industrial Automation DOPSoft DPS File Remote Code Execution Vulnerability

CVE-2023-43820 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A stack based buffer overflow exists in Delta Electronics Delta Industrial Automation DOPSoft when parsing the wLogTitlesPrevValueLen field of a DPS file. A remote, unauthenticated attacker can exploit this vulnerability by enticing a user to open a specially crafted DPS file to achieve remote code execution.

Learn more about our Industrial Pen Testing.