CVE-2021-22756
CVE-2021-22756 affects Schneider Electric IGSS Definition (Def.exe) versions up to 15.0.0.21140. The Red Hat and CNVD/NVD entries describe an out-of-bounds read (CWE-125) caused by insufficient validation when a malicious CGF file is imported, potentially enabling information disclosure or remote...