Lucene search
K

27 matches found

EUVD
EUVD
added 2026/06/25 5:47 p.m.4 views

EUVD-2026-39509

Horner Automation Cscape versions prior to 10.2 SP3 are vulnerable to an Out-of-Bounds Read vulnerability through parsing CSP files. Successful exploitation of this vulnerability could allow an attacker to disclose information and execute arbitrary code...

8.4CVSS6AI score0.00134EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.10 views

PT-2026-52534

Name of the Vulnerable Software and Affected Versions Horner Automation Cscape versions prior to 10.2 SP3 Description An Out-of-Bounds Read occurs during the parsing of CSP files. This issue allows an attacker to disclose sensitive information and execute arbitrary code. Recommendations Update...

8.4CVSS5.9AI score0.00134EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-59387

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00213EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 10:18 a.m.13 views

CVE-2024-12212

The vulnerability occurs in the parsing of CSP files. The issues result from the lack of proper validation of user-supplied data, which could allow reading past the end of allocated data structures, resulting in execution of arbitrary code...

8.5CVSS7.1AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 1:15 a.m.27 views

CVE-2024-12212

The vulnerability occurs in the parsing of CSP files. The issues result from the lack of proper validation of user-supplied data, which could allow reading past the end of allocated data structures, resulting in execution of arbitrary code...

8.5CVSS0.00205EPSS
Exploits0References2
CVE
CVE
added 2024/12/13 12:50 a.m.66 views

CVE-2024-12212

CVE-2024-12212 affects Horner Automation Cscape. The issue arises in CSP file parsing, due to improper validation of user-supplied data, potentially enabling a memory corruption condition (out-of-bounds read) that could lead to arbitrary code execution. Reported as a vulnerability in Cscape befor...

8.5CVSS7.7AI score0.00205EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/13 12:0 a.m.4 views

PT-2024-17488 · Horner Automation · Cscape

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue occurs in the parsing of CSP files due to the lack of proper validation of user-supplied data. This could allow reading past the end of...

8.5CVSS7.2AI score0.00205EPSS
Exploits0References7
NVD
NVD
added 2024/01/15 11:15 p.m.20 views

CVE-2023-7206

In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape...

7.8CVSS7.7AI score0.00213EPSS
Exploits0References2
Prion
Prion
added 2024/01/15 11:15 p.m.16 views

Design/Logic Flaw

In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape...

4.4CVSS7.3AI score0.00213EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/01/15 10:22 p.m.29 views

CVE-2023-7206 Horner Automation Cscape Stack-Based Buffer Overflow

In Horner Automation Cscape versions 9.90 SP10 and prior, local attackers are able to exploit this vulnerability if a user opens a malicious CSP file, which would result in execution of arbitrary code on affected installations of Cscape...

7.8CVSS7.9AI score0.00213EPSS
Exploits0References2
NVD
NVD
added 2023/06/06 5:15 p.m.7 views

CVE-2023-31244

The affected product does not properly validate user-supplied data. If a user opens a maliciously formed CSP file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer...

7.8CVSS7.9AI score0.00227EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/06/06 4:27 p.m.14 views

CVE-2023-31244

The affected product does not properly validate user-supplied data. If a user opens a maliciously formed CSP file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer...

7.8CVSS8AI score0.00227EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/06 4:27 p.m.6 views

CVE-2023-31244

The affected product does not properly validate user-supplied data. If a user opens a maliciously formed CSP file, then an attacker could execute arbitrary code within the current process by accessing an uninitialized pointer...

7.8CVSS7.6AI score0.00227EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/05/26 12:0 a.m.6 views

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading beyond the buffer in the FontManager system’s control module. This allows an attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises from reading data beyond the buffer boundaries in the FontManager system’s memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by having the us...

7.8CVSS7.9AI score0.00227EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/05/24 12:0 a.m.8 views

The vulnerability of the Horner Automation Cscape EnvisionRV remote controller access software and the Cscape software arises from buffer overflow in the stack, allowing an attacker to execute arbitrary code.

The vulnerability of the Horner Automation Cscape EnvisionRV remote control access software and the Cscape software arises due to buffer overflow in the stack. Exploiting this vulnerability allows an attacker to execute arbitrary code by causing the user to open a specially created CSP file...

7.8CVSS8AI score0.0023EPSS
Exploits0References4Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2021/02/09 12:0 a.m.41 views

Horner Automation Cscape CSP File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

7.8CVSS3.6AI score0.01345EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/10/18 12:0 a.m.25 views

Horner Automation Cscape CSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS3.2AI score0.01939EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/10/18 12:0 a.m.26 views

Horner Automation Cscape CSP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsi...

7.8CVSS3.8AI score0.01939EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/02/20 12:0 a.m.25 views

Horner Automation Cscape CSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS3.1AI score0.01716EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/02/20 12:0 a.m.24 views

Horner Automation Cscape CSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Horner Automation Cscape. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS3.1AI score0.01716EPSS
Exploits0References1
Rows per page
Query Builder