Unrated severityNVD Advisory· Published Feb 14, 2023· Updated Mar 20, 2025
CVE-2023-24482
CVE-2023-24482
Description
A vulnerability has been identified in COMOS V10.2 (All versions), COMOS V10.3.3.1 (All versions < V10.3.3.1.45), COMOS V10.3.3.2 (All versions < V10.3.3.2.33), COMOS V10.3.3.3 (All versions < V10.3.3.3.9), COMOS V10.3.3.4 (All versions < V10.3.3.4.6), COMOS V10.4.0.0 (All versions < V10.4.0.0.31), COMOS V10.4.1.0 (All versions < V10.4.1.0.32), COMOS V10.4.2.0 (All versions < V10.4.2.0.25). Cache validation service in COMOS is vulnerable to Structured Exception Handler (SEH) based buffer overflow. This could allow an attacker to execute arbitrary code on the target system or cause denial of service condition.
Affected products
9- Range: >=10.2 <10.3.3.1.45, >=10.3.3.2 <10.3.3.2.33, >=10.3.3.3 <10.3.3.3.9, >=10.3.3.4 <10.3.3.4.6, >=10.4.0.0 <10.4.0.0.31, >=10.4.1.0 <10.4.1.0.32, >=10.4.2.0 <10.4.2.0.25
- Siemens/COMOS V10.2v5Range: All versions
- Siemens/COMOS V10.3.3.1v5Range: All versions < V10.3.3.1.45
- Siemens/COMOS V10.3.3.2v5Range: All versions < V10.3.3.2.33
- Siemens/COMOS V10.3.3.3v5Range: All versions < V10.3.3.3.9
- Siemens/COMOS V10.3.3.4v5Range: All versions < V10.3.3.4.6
- Siemens/COMOS V10.4.0.0v5Range: All versions < V10.4.0.0.31
- Siemens/COMOS V10.4.1.0v5Range: All versions < V10.4.1.0.32
- Siemens/COMOS V10.4.2.0v5Range: All versions < V10.4.2.0.25
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.