CVE-2018-5452
Severity CVSS v4.0:
Pending analysis
Type:
CWE-121
Stack-based Buffer Overflow
Publication date:
07/03/2018
Last modified:
17/06/2026
Description
A Stack-based Buffer Overflow issue was discovered in Emerson Process Management ControlWave Micro Process Automation Controller: ControlWave Micro [ProConOS v.4.01.280] firmware: CWM v.05.78.00 and prior. A stack-based buffer overflow vulnerability caused by sending crafted packets on Port 20547 could force the PLC to change its state into halt mode.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:emerson:controlwave_micro_firmware:*:*:*:*:*:*:*:* | 05.78.00 (including) | |
| cpe:2.3:h:emerson:controlwave_micro:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page



