Lucene search
China National Vulnerability DatabaseCNVD-2023-43572HistoryJun 22, 2022 - 12:00 a.m.
Schneider Electric IGSS Data Server alarm data buffer overflow vulnerability
2022-06-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
schneider electric
igss data server
buffer overflow
vulnerability
scada system
memory corruption
arbitrary code
cnvd
EPSS
0.004
Percentile
75.3%
The Schneider Electric Igss Data Server is a data server for the interactive graphical Scada system from Schneider Electric (France). A buffer overflow vulnerability exists in Schneider Electric IGSS Data Server versions prior to 15.0.0.22140, which stems from a boundary error when processing untrusted input. An attacker could exploit the vulnerability by sending a specially crafted alarm data message that would trigger a memory corruption and execute arbitrary code on the target system.
Related
cvelist
cvelist
CVE-2022-32525
2023-01-30 00:00:00
prion
prion
Stack overflow
2023-01-30 23:15:00
cve
cve
CVE-2022-32525
2023-01-30 23:15:10
nvd
nvd
CVE-2022-32525
2023-01-30 23:15:10