CVE-2024-29219

2024-04-1511:15:08

[email protected]

web.nvd.nist.gov

vulnerability

information disclosure

arbitrary code execution

kv studio

kv replay viewer

file-based attack

7.1 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.

Affected configurations

Vulners

Node

keyence_corporationkv_studioMatch11.64

keyence_corporationkv_replay_viewerMatch2.64

CNA Affected

[
  {
    "vendor": "KEYENCE CORPORATION",
    "product": "KV STUDIO",
    "versions": [
      {
        "version": "Ver.11.64 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "KEYENCE CORPORATION",
    "product": "KV REPLAY VIEWER",
    "versions": [
      {
        "version": "Ver.2.64 and earlier",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/vu/JVNVU95439120/

www.keyence.com/kv_vulnerability240329_en