Submit #323832: Shanghai Sunfull Automation Co., LTD. HMI1002-ARM Firmware Revision: 2.0.4 Buffer Overflowinfo

TitleShanghai Sunfull Automation Co., LTD. HMI1002-ARM Firmware Revision: 2.0.4 Buffer Overflow
DescriptionThe vulnerability arises when the device processes a malformed message, leading to a buffer overflow. This issue is specifically triggered by improper handling of data within the device, causing memory to overflow into adjacent areas designated for protocol data unit handling. As a result, the device generates a response with an erroneous APDU that includes data reflective of the overflowed buffer content. This malfunction indicates a critical flaw in the device’s memory management that could potentially be exploited to alter device operations or extract sensitive information.
Source⚠️ https://github.com/isZzzz/HMI1002-ARM-Gateway-Document/blob/main/HMI1002-ARM%20apply.pdf
UserisZzzzz (ID 64489)
Submission04/28/2024 06:08 AM (3 months ago)
Moderation05/05/2024 09:06 AM (7 days later)
StatusAccepted
VulDB Entry263115

Might our Artificial Intelligence support you?

Check our Alexa App!