CVE-2021-22824

2022-02-1117:40:40

CWE-120

schneider

www.cve.org

cve-2021-22824

cwe-120

buffer copy without checking size of input

denial of service

interactive graphical scada system data collector

EPSS

0.001

Percentile

39.4%

JSON

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length check on user-supplied data from a constructed message received on the network. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)

CNA Affected

[
  {
    "product": "Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21320 and prior)"
      }
    ]
  }
]

References

download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-348-01

EPSS

0.001

Percentile

39.4%

JSON

Related for CVELIST:CVE-2021-22824