2 matches found
CVE-2023-32281
The affected application lacks proper validation of user-supplied data when parsing project files e.g., CSP. This could lead to an out-of-bounds read in the FontManager. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...
CVE-2023-32281
CVE-2023-32281 corresponds to a vulnerability in Horner Automation software where parsing CSP project files can trigger an out-of-bounds read in the FontManager, potentially allowing arbitrary code execution in the affected process. The issue is tied to improper validation of user-supplied data d...