VYPR
Unrated severityNVD Advisory· Published Feb 14, 2023· Updated Mar 20, 2025

CVE-2023-24482

CVE-2023-24482

Description

A vulnerability has been identified in COMOS V10.2 (All versions), COMOS V10.3.3.1 (All versions < V10.3.3.1.45), COMOS V10.3.3.2 (All versions < V10.3.3.2.33), COMOS V10.3.3.3 (All versions < V10.3.3.3.9), COMOS V10.3.3.4 (All versions < V10.3.3.4.6), COMOS V10.4.0.0 (All versions < V10.4.0.0.31), COMOS V10.4.1.0 (All versions < V10.4.1.0.32), COMOS V10.4.2.0 (All versions < V10.4.2.0.25). Cache validation service in COMOS is vulnerable to Structured Exception Handler (SEH) based buffer overflow. This could allow an attacker to execute arbitrary code on the target system or cause denial of service condition.

Affected products

9
  • Range: >=10.2 <10.3.3.1.45, >=10.3.3.2 <10.3.3.2.33, >=10.3.3.3 <10.3.3.3.9, >=10.3.3.4 <10.3.3.4.6, >=10.4.0.0 <10.4.0.0.31, >=10.4.1.0 <10.4.1.0.32, >=10.4.2.0 <10.4.2.0.25
  • Siemens/COMOS V10.2v5
    Range: All versions
  • Siemens/COMOS V10.3.3.1v5
    Range: All versions < V10.3.3.1.45
  • Siemens/COMOS V10.3.3.2v5
    Range: All versions < V10.3.3.2.33
  • Siemens/COMOS V10.3.3.3v5
    Range: All versions < V10.3.3.3.9
  • Siemens/COMOS V10.3.3.4v5
    Range: All versions < V10.3.3.4.6
  • Siemens/COMOS V10.4.0.0v5
    Range: All versions < V10.4.0.0.31
  • Siemens/COMOS V10.4.1.0v5
    Range: All versions < V10.4.1.0.32
  • Siemens/COMOS V10.4.2.0v5
    Range: All versions < V10.4.2.0.25

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.