CVE-2024-29219

2024-04-1510:41:33

jpcert

www.cve.org

out-of-bounds read

kv studio

kv replay viewer

information disclosure

arbitrary code execution

specially crafted file

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.

CNA Affected

[
  {
    "vendor": "KEYENCE CORPORATION",
    "product": "KV STUDIO",
    "versions": [
      {
        "version": "Ver.11.64 and earlier",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "KEYENCE CORPORATION",
    "product": "KV REPLAY VIEWER",
    "versions": [
      {
        "version": "Ver.2.64 and earlier",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/vu/JVNVU95439120/

www.keyence.com/kv_vulnerability240329_en