{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-7339","assignerOrgId":"10de8ef9-5c89-4b17-8228-e97b74acf4bd","state":"PUBLISHED","assignerShortName":"Softing","dateReserved":"2026-03-27T10:08:58.402Z","datePublished":"2026-03-27T10:53:07.778Z","dateUpdated":"2026-03-27T12:21:25.031Z"},"containers":{"cna":{"providerMetadata":{"orgId":"10de8ef9-5c89-4b17-8228-e97b74acf4bd","shortName":"Softing","dateUpdated":"2026-03-27T10:53:07.778Z"},"title":"Data collection for dowloading leads into buffer overflow","problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-121","description":"CWE-121 Stack-based Buffer Overflow","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-100","descriptions":[{"lang":"en","value":"CAPEC-100 Overflow Buffers"}]}],"affected":[{"vendor":"Softing","product":"pnGate","versions":[{"status":"affected","version":"0","lessThanOrEqual":"1.30","versionType":"custom"},{"status":"unaffected","version":"1.34","versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Softing","product":"epGate","versions":[{"status":"affected","version":"0","lessThanOrEqual":"1.30","versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Softing","product":"mbGate","versions":[{"status":"affected","version":"0","lessThanOrEqual":"1.30","versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Softing","product":"smartLink HW-DP","versions":[{"status":"affected","version":"0","lessThanOrEqual":"1.30","versionType":"custom"},{"status":"unaffected","version":"1.31","versionType":"custom"}],"defaultStatus":"unaffected"},{"vendor":"Softing","product":"smartLink HW-PN","versions":[{"status":"affected","version":"0","lessThanOrEqual":"1.01","versionType":"custom"},{"status":"unaffected","version":"1.02","versionType":"custom"}],"defaultStatus":"unaffected"}],"cpeApplicability":[{"operator":"OR","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softing:pngate:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndIncluding":"1.30"},{"vulnerable":false,"criteria":"cpe:2.3:a:softing:pngate:1.34:*:*:*:*:*:*:*"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softing:epgate:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndIncluding":"1.30"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softing:mbgate:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndIncluding":"1.30"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softing:smartlink_hw-dp:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndIncluding":"1.30"},{"vulnerable":false,"criteria":"cpe:2.3:a:softing:smartlink_hw-dp:1.31:*:*:*:*:*:*:*"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:softing:smartlink_hw-pn:*:*:*:*:*:*:*:*","versionStartIncluding":"0","versionEndIncluding":"1.01"},{"vulnerable":false,"criteria":"cpe:2.3:a:softing:smartlink_hw-pn:1.02:*:*:*:*:*:*:*"}]}]}],"descriptions":[{"lang":"en","value":"Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers.\nThis issue affects\npnGate: through 1.30\nepGate: through 1.30\nmbGate: through 1.30\nsmartLink HW-DP: through 1.30\nsmartLink HW-PN: through 1.01.","supportingMedia":[{"type":"text/html","base64":false,"value":"<p>Stack-based buffer overflow vulnerability in Softing Industrial Automation GmbH gateways allows overflow buffers.<br>This issue affects<br>pnGate: through 1.30<br>epGate: through 1.30<br>mbGate: through 1.30<br>smartLink HW-DP: through 1.30<br>smartLink HW-PN: through 1.01.</p>"}]}],"references":[{"url":"https://industrial.softing.com/fileadmin/psirt/downloads/2023/CVE-2023-7339.html","tags":["x_html"]},{"url":"https://industrial.softing.com/fileadmin/psirt/downloads/2023/CVE-2023-7339.json","tags":["x_json"]}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_1":{"version":"3.1","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH","baseSeverity":"MEDIUM","baseScore":6.5,"vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"}}],"solutions":[{"lang":"en","value":"pnGate: fixed with 1.34","supportingMedia":[{"type":"text/html","base64":false,"value":"<p>pnGate: fixed with 1.34<br></p>"}]},{"lang":"en","value":"smartLink HW-DP: fixed with 1.31\nsmartLink HW-PN: fixed with 1.02","supportingMedia":[{"type":"text/html","base64":false,"value":"smartLink HW-DP: fixed with 1.31<br>smartLink HW-PN: fixed with 1.02"}]}],"source":{"discovery":"INTERNAL"},"x_generator":{"engine":"Vulnogram 0.5.0"}},"adp":[{"references":[{"url":"https://industrial.softing.com/fileadmin/psirt/downloads/2023/CVE-2023-7339.html","tags":["broken-link"]},{"url":"https://industrial.softing.com/fileadmin/psirt/downloads/2023/CVE-2023-7339.json","tags":["broken-link"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-03-27T12:21:13.590182Z","id":"CVE-2023-7339","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-03-27T12:21:25.031Z"}}]}}