Vulnerability Description
Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. An attacker could use specially crafted project files to overflow the buffer and execute code under the privileges of the application.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Fujielectric | Alpha5 Smart Loader Firmware | < 4.2 |
| Fujielectric | Alpha5 Smart Loader | - |
Related Weaknesses (CWE)
References
- https://www.us-cert.gov/ics/advisories/icsa-19-227-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-19-798/Third Party AdvisoryVDB Entry
- https://www.zerodayinitiative.com/advisories/ZDI-19-820/Third Party AdvisoryVDB Entry
- https://www.us-cert.gov/ics/advisories/icsa-19-227-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-19-798/Third Party AdvisoryVDB Entry
- https://www.zerodayinitiative.com/advisories/ZDI-19-820/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2019-13520?
CVE-2019-13520 is a vulnerability with a CVSS score of 7.8 (HIGH). Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. An attacker could use specially crafted project files to overflow the buffer and execute code un...
How severe is CVE-2019-13520?
CVE-2019-13520 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-13520?
Check the references section above for vendor advisories and patch information. Affected products include: Fujielectric Alpha5 Smart Loader Firmware, Fujielectric Alpha5 Smart Loader.