CVE-2024-11799 is a stack-based buffer overflow vulnerability found in Fuji Electric Tellus Lite V-Simulator 5, specifically version 4.0.20.0. The flaw exists in the component responsible for parsing V8 files, where the software fails to properly validate the length of user-supplied data before copying it into a fixed-length buffer on the stack. This lack of bounds checking allows an attacker to overflow the buffer, overwriting adjacent memory and enabling arbitrary code execution within the context of the vulnerable process. Exploitation requires user interaction, such as opening a maliciously crafted V8 file or visiting a malicious webpage that triggers the vulnerable parsing routine. The vulnerability is classified under CWE-121 (stack-based buffer overflow) and carries a CVSS v3.0 score of 7.8, indicating high severity. The attack vector is local (AV:L) but requires low attack complexity (AC:L), no privileges (PR:N), and user interaction (UI:R). Successful exploitation compromises confidentiality, integrity, and availability of the affected system. While no public exploits are known at this time, the vulnerability poses a significant risk to environments running the affected Fuji Electric Tellus Lite version. The vulnerability was reported and assigned by the Zero Day Initiative (ZDI) as ZDI-CAN-24664.

The vulnerability allows remote attackers to execute arbitrary code with the privileges of the affected process, potentially leading to full system compromise. This can result in unauthorized access to sensitive data, modification or destruction of critical information, and disruption of industrial control processes managed by Fuji Electric Tellus Lite. Given the software’s role in industrial automation and control, exploitation could have severe operational impacts, including downtime, safety hazards, and financial losses. The requirement for user interaction limits mass exploitation but targeted attacks against industrial environments remain a serious concern. Organizations relying on this software for critical infrastructure or manufacturing processes face elevated risks of espionage, sabotage, or ransomware attacks leveraging this vulnerability.

Since no official patches are currently available, organizations should implement the following mitigations: 1) Restrict access to Fuji Electric Tellus Lite systems and limit user privileges to reduce the impact of potential exploitation. 2) Employ network segmentation to isolate vulnerable systems from untrusted networks and reduce exposure. 3) Educate users to avoid opening untrusted V8 files or visiting suspicious websites that could trigger the vulnerability. 4) Monitor logs and network traffic for unusual activity indicative of exploitation attempts. 5) Use application whitelisting and endpoint protection solutions capable of detecting anomalous behavior or code execution. 6) Engage with Fuji Electric for timely updates and apply patches immediately once released. 7) Consider deploying virtual patching or intrusion prevention systems to block exploit attempts targeting this vulnerability.