CVE-2016-5802

HIGH

Delta Electronics WPLSoft <V2.42.11 - Buffer Overflow

Title source: llm
STIX 2.1

Description

An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft, Versions prior to 3.02.11, and PMSoft, Versions prior to 2.10.10. Multiple instances of out-of-bounds write conditions may allow malicious files to be read and executed by the affected software.

References (2)

Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-16-348-03
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/94887

Scores

CVSS v3 7.8
EPSS 0.0105
EPSS Percentile 60.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-787
Status published
Products (4)
delta_electronics/ispsoft
delta_electronics/pmsoft
delta_electronics/wplsoft
n/a/Delta Electronics WPLSoft, ISPSoft, and PMSoft Delta Electronics WPLSoft, ISPSoft, and PMSoft
Published Feb 13, 2017
Tracked Since Feb 18, 2026