OTPulse
FeedAboutContact

Datalogics Library Third-Party

Monitor5.5ICS-CERT ICSA-23-164-01Jun 13, 2023
Attack VectorLocal
Auth RequiredNone
ComplexityLow
User InteractionRequired
Summary

A stack-based buffer overflow in Datalogics Library APDFL version 18.0.4PlusP1e and earlier can cause the application to crash when processing specially crafted input. The vulnerability requires local access and user interaction to trigger.

What this means
What could happen
An attacker with local access to a computer running APDFL could crash the application by tricking a user into opening a malicious file, disrupting work that depends on the library. This is not a remote vulnerability and does not allow unauthorized access or data theft.
Who's at risk
Organizations using Datalogics APDFL library in document processing workflows, including those in utilities that use engineering workstations or business systems for permit management, permits, or document handling should review their use of this library.
How it could be exploited
An attacker would need to craft a malicious file and trick a user with access to the affected system into opening it. When the library processes the file, the stack-based buffer overflow triggers, causing the application to crash. This requires the attacker to have physical or local network access to the system and user interaction.
Prerequisites
  • Local access to the system running APDFL
  • User interaction required (user must open a malicious file)
  • APDFL version 18.0.4PlusP1e or earlier installed
Low complexityUser interaction requiredLocal access onlyCan cause denial of service (crash)
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (1)
ProductAffected VersionsFix Status
Library APDFL: <= 18.0.4PlusP1e≤ 18.0.4PlusP1e18.0.4PlusP1g
Remediation & Mitigation
0/3
Do now
0/2
HARDENINGRestrict local access to systems running APDFL; limit who can log in and open files
HARDENINGTrain users not to open files from untrusted sources
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate Datalogics Library APDFL to version 18.0.4PlusP1g or later
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/769d1bad-b72d-4d47-ae1d-41f5853c73be
Datalogics Library Third-Party | CVSS 5.5 - OTPulse