CVE-2024-39354 Information

Description

If an attacker tricks a valid user into running Delta Electronics DIAScreen with a file containing malicious code a stack-based buffer overflow in CEtherIPTagItem can be exploited allowing the attacker to remotely execute arbitrary code.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-312-02 https://www.deltaww.com/en-US/Cybersecurity_Advisory