2 matches found
CVE-2021-22761
A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in disclosure of information or remote code e+F15xecution due to missing length check on user supplied data, when a malicious...
CVE-2021-22761
The CVE-2021-22761 entry applies to Schneider Electric IGSS Definition (Def.exe) versions 15.0.0.21140 and earlier. The root cause is missing length checks when parsing a malicious CGF file, leading to out-of-bounds/memory corruption that can disclose information or enable remote code execution. ...