3 matches found
CVE-2018-18987
VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects with user supplied input via a file without first checking for validity, allowing attacker supplied input to be written to known memory locations. This may cause the program to crash or allow remote code execution...
CVE-2018-18987
INVT Electric VT-Designer 2.1.7.31 is affected by a deserialization of untrusted data vulnerability that can be triggered by processing input from a file, allowing attacker-controlled data to be written to memory and potentially crash the program or execute arbitrary code. Public write-ups consis...
INVT Electric VT-Designer
1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: INVT Electric Equipment: VT-Designer Vulnerabilities: Deserialization of Untrusted Data, Heap-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could cause...