Lucene search

PRIOn knowledge basePRION:CVE-2023-22360

HistoryFeb 13, 2023 - 2:21 a.m.

Design/Logic Flaw

2023-02-1302:21:00

PRIOn knowledge base

www.prio-n.com

use-after free

screen creator advance 2

information disclosure

arbitrary code execution

vulnerability

error handling

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.8%

JSON

Use-after free vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier due to lack of error handling process even when an error was detected. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.

CPENameOperatorVersion
screen_creator_advance_2eq0.1.1.4 build1
screen_creator_advance_2le0.1.1.4

CPE	Name	Operator	Version
	screen_creator_advance_2	eq	0.1.1.4 build1
	screen_creator_advance_2	le	0.1.1.4

References

jvn.jp/en/vu/JVNVU98917488/

www.electronics.jtekt.co.jp/en/topics/202302035233/

www.electronics.jtekt.co.jp/jp/topics/2023020313454/