7.8
CVE-2023-22353
- EPSS 0.09%
- Veröffentlicht 13.02.2023 02:21:07
- Zuletzt bearbeitet 21.03.2025 19:15:44
- Quelle vultures@jpcert.or.jp
- CVE-Watchlists
- Unerledigt
LoginOut-of-bound read vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier because the end of data cannot be verified when processing control management information. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Jtekt ≫ Screen Creator Advance 2 Version <= 0.1.1.4
Jtekt ≫ Screen Creator Advance 2 Version0.1.1.4 Updatebuild01
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.09% | 0.261 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
CWE-125 Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.