CVE-2018-17930

CRITICAL

Teledyne DALSA Sherlock < 7.2.7.4 - Stack-based Buffer Overflow

Title source: llm

Description

A stack-based buffer overflow vulnerability has been identified in Teledyne DALSA Sherlock Version 7.2.7.4 and prior, which may allow remote code execution.

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/105967

Various Sources x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-18-324-01%2C

Product, Vendor Advisory x_refsource_misc

https://www.teledynedalsa.com/en/products/imaging/vision-software/sherlock/

Scores

CVSS v3 9.8

EPSS 0.0726

EPSS Percentile 93.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-121 CWE-787

Status published

Products (1)

teledynedalsa/sherlock < 7.2.7.4

Published Nov 28, 2018

Tracked Since Feb 18, 2026