Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:33 a.m.11 views

CVE-2023-1049

A CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exists that could cause execution of malicious code when an unsuspicious user loads a project file from the local filesystem into the HMI...

7.8CVSS7.1AI score0.00597EPSS
Exploits0References1
NVD
NVD
added 2022/03/25 7:15 p.m.32 views

CVE-2021-44462

This vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior. The issues result from the lack of proper validation of user-supplied data, which can result in reads and writes past the end of allocated data structures...

7.8CVSS0.00685EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/03/25 6:2 p.m.28 views

CVE-2021-44462 Horner Automation Cscape EnvisionRV Improper Input Validation

This vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior. The issues result from the lack of proper validation of user-supplied data, which can result in reads and writes past the end of allocated data structures...

7.8CVSS7.5AI score0.00685EPSS
Exploits0References1
CVE
CVE
added 2022/03/25 6:2 p.m.50 views

CVE-2021-44462

CVE-2021-44462 affects Horner Automation Cscape EnvisionRV (v4.50.3.1 and prior). The vulnerability stems from improper input validation (CWE-20), allowing reads/writes past the end of allocated data structures when parsing maliciously crafted project files. Exploitation requires user interaction...

7.8CVSS6.8AI score0.00685EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder