2 matches found
CVE-2023-28653
The affected application lacks proper validation of user-supplied data when parsing project files e.g., CSP. This could lead to a use-after-free vulnerability. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2023-28653
Summary of CVE-2023-28653 : Horner Automation Cscape and Cscape EnvisionRV are affected by a vulnerability caused by insufficient validation of user-supplied data when parsing project files (e.g., CSP), which can lead to a use-after-free and arbitrary code execution in the current process. Affect...