{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-24T03:27:25.647","vulnerabilities":[{"cve":{"id":"CVE-2023-5908","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2023-11-30T22:15:09.923","lastModified":"2024-11-21T08:42:45.123","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"\n\n\n\n\nKEPServerEX is vulnerable to a buffer overflow which may allow an attacker to crash the product being accessed or leak information.\n\n\n\n\n"},{"lang":"es","value":"KEPServerEX es vulnerable a un desbordamiento del búfer que puede permitir que un atacante bloquee el producto al que se accede o filtre información."}],"metrics":{"cvssMetricV31":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H","baseScore":9.1,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.2}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-120"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:ge:industrial_gateway_server:*:*:*:*:*:*:*:*","versionEndIncluding":"7.614","matchCriteriaId":"FAC36939-C47F-4426-A684-0252C014CB05"},{"vulnerable":true,"criteria":"cpe:2.3:a:ptc:keepserverex:*:*:*:*:*:*:*:*","versionEndIncluding":"6.14.263.0","matchCriteriaId":"3C003AF3-3140-4AD9-8407-D3C216D72AA0"},{"vulnerable":true,"criteria":"cpe:2.3:a:ptc:opc-aggregator:*:*:*:*:*:*:*:*","versionEndIncluding":"6.14","matchCriteriaId":"B0A4FE5D-D1DD-4854-B709-3E0A54D6BE97"},{"vulnerable":true,"criteria":"cpe:2.3:a:ptc:thingworx_industrial_connectivity:-:*:*:*:*:*:*:*","matchCriteriaId":"D01A814D-8F2B-4B88-A66B-F2A2C293A6AB"},{"vulnerable":true,"criteria":"cpe:2.3:a:ptc:thingworx_kepware_edge:*:*:*:*:*:*:*:*","versionEndIncluding":"1.7","matchCriteriaId":"E8B99ED4-CEB0-463D-9900-426C6108A009"},{"vulnerable":true,"criteria":"cpe:2.3:a:ptc:thingworx_kepware_server:*:*:*:*:*:*:*:*","versionEndIncluding":"6.14.263.0","matchCriteriaId":"14930935-3DE4-403F-9F6A-9E4490C3B95D"},{"vulnerable":true,"criteria":"cpe:2.3:a:rockwellautomation:kepserver_enterprise:*:*:*:*:*:*:*:*","versionEndIncluding":"6.14.263.0","matchCriteriaId":"40663AD6-24DE-4D75-AA95-0D4E6A2ADF04"},{"vulnerable":true,"criteria":"cpe:2.3:a:softwaretoolbox:top_server:*:*:*:*:*:*:*:*","versionEndIncluding":"6.14.263.0","matchCriteriaId":"CB7C7A8B-38A0-4A48-B78A-F5FAA2A9E20F"}]}]}],"references":[{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-334-03","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"https://www.cisa.gov/news-events/ics-advisories/icsa-23-334-03","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}