CVE-2022-3085

2023-01-1900:15:10

CWE-121

[email protected]

web.nvd.nist.gov

fuji electric

tellus lite

v-simulator

cve-2022-3085

buffer overflow

security vulnerability

nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

0.001 Low

EPSS

Percentile

30.9%

JSON

Fuji Electric Tellus Lite V-Simulator versions 4.0.12.0 and prior are vulnerable to a stack-based buffer overflow which may allow an attacker to execute arbitrary code.

Affected configurations

NVD

Node

fujielectrictellus_lite_v-simulatorRange≤4.0.12.0

CPENameOperatorVersion
fujielectric:tellus_lite_v-simulatorfujielectric tellus lite v-simulatorle4.0.12.0

CPE	Name	Operator	Version
fujielectric:tellus_lite_v-simulator	fujielectric tellus lite v-simulator	le	4.0.12.0

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Tellus Lite V-Simulator",
    "vendor": "Fuji Electric",
    "versions": [
      {
        "lessThanOrEqual": " 4.0.12.0",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]