CVE-2022-29488
- EPSS 0.82%
- Veröffentlicht 02.06.2022 14:15:48
- Zuletzt bearbeitet 21.11.2024 06:59:10
The affected product is vulnerable to an out-of-bounds read via uninitialized pointer, which may allow an attacker to execute arbitrary code.
CVE-2022-28690
- EPSS 0.82%
- Veröffentlicht 02.06.2022 14:15:45
- Zuletzt bearbeitet 21.11.2024 06:57:45
The affected product is vulnerable to an out-of-bounds write via uninitialized pointer, which may allow an attacker to execute arbitrary code.
CVE-2022-27184
- EPSS 0.8%
- Veröffentlicht 02.06.2022 14:15:43
- Zuletzt bearbeitet 21.11.2024 06:55:21
The affected product is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code.
CVE-2021-33015
- EPSS 1%
- Veröffentlicht 25.08.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 06:08:07
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds write via an uninitialized pointer. An attacker could leverage this vulnerability to execute code in...
CVE-2021-32995
- EPSS 1%
- Veröffentlicht 25.08.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 06:08:05
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds write. An attacker could leverage this vulnerability to execute code in the context of the current p...
CVE-2021-32975
- EPSS 0.97%
- Veröffentlicht 25.08.2021 19:15:12
- Zuletzt bearbeitet 21.11.2024 06:08:02
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute code in the context of the current pr...
CVE-2021-22682
- EPSS 0.22%
- Veröffentlicht 23.04.2021 18:15:08
- Zuletzt bearbeitet 21.11.2024 05:50:28
Cscape (All versions prior to 9.90 SP4) is configured by default to be installed for all users, which allows full permissions, including read/write access. This may allow unprivileged users to modify the binaries and configuration files and lead to l...
CVE-2021-22678
- EPSS 1.03%
- Veröffentlicht 23.04.2021 18:15:08
- Zuletzt bearbeitet 21.11.2024 05:50:27
Cscape (All versions prior to 9.90 SP4) lacks proper validation of user-supplied data when parsing project files. This could lead to memory corruption. An attacker could leverage this vulnerability to execute code in the context of the current proces...
CVE-2021-22663
- EPSS 1.35%
- Veröffentlicht 09.02.2021 17:15:14
- Zuletzt bearbeitet 21.11.2024 05:50:25
Cscape (All versions prior to 9.90 SP3.5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute code in the context of the current ...
CVE-2019-13545
- EPSS 1.94%
- Veröffentlicht 18.10.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:25:07
In Horner Automation Cscape 9.90 and prior, improper validation of data may cause the system to write outside the intended buffer area, which may allow arbitrary code execution.