Last Update: August 23, 2023
Multiple vulnerabilities have been discovered in Hitachi EH-VIEW, which could allow local attackers to potentially disclose information and execute arbitrary code on affected EH-VIEW installations. User interaction is required to exploit the vulnerabilities in that the user must open a malicious file.
CVE-2023-3495: Out-of-Bounds Write
The flaws (#1, #2) in EH-VIEW (KeypadDesigner) exist within the parsing of KBD files.
CVSS:2.0 CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:C [7.2]
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8]
CWE-787: Out-of-bounds Write
CVE-2023-39984: Improper Restriction of Operations within the Bounds of a Memory Buffer
The flaw in EH-VIEW (KeypadDesigner) exists within the parsing of KBD files.
CVSS:2.0 CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:C [7.2]
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8]
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2023-39985: Out-of-Bounds Write
The flaws (#1, #2) in EH-VIEW (Designer) exist within the parsing of UPR files.
CVSS:2.0 CVSS:2.0/AV:L/AC:L/Au:N/C:C/I:C/A:C [7.2]
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H [7.8]
CWE-787: Out-of-bounds Write
CVE-2023-39986: Out-of-Bounds Read
The flaws (#1, #2, #3, #4) in EH-VIEW (Designer) exist within the parsing of UPR files.
These vulnerabilities allow a users to potentially disclose information and to execute arbitrary code on affected installations of EH-VIEW.
The EH-VIEW has already reached End of Life (EOL) and is not supported anymore. Hitachi recommends that this product be retired.
Michael Heinzl reported these vulnerabilities.
Masato Terada (HIRT) and Naoko Ohnishi (HIRT)
