2 matches found
CVE-2021-22758
A CWE-824: Access of uninitialized pointer vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in loss of data or remote code execution due to lack validation of user-supplied input data, when a malicious CGF file is imported to IGSS Definition...
CVE-2021-22758
IGSS Definition (Def.exe) vulnerability CVE-2021-22758 affects v15.0.0.21140 and earlier, caused by lack of input validation when importing a malicious CGF file, leading to loss of data or remote code execution (CWE-824). Schneider Electric fixes this in Def.exe v15.0.0.21141; remediation guidanc...