Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/06/23 8:39 a.m.4 views

CVE-2025-49849

An Out-of-bounds Read vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS7.4AI score0.00141EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/23 8:38 a.m.6 views

CVE-2025-49850

A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS7.5AI score0.00143EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/23 8:38 a.m.5 views

CVE-2025-49848

An Out-of-bounds Write vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS7.4AI score0.00155EPSS
Exploits0References1
NVD
NVD
added 2025/06/17 7:15 p.m.4 views

CVE-2025-49850

A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS0.00143EPSS
Exploits0References1
CVE
CVE
added 2025/06/17 6:35 p.m.13 views

CVE-2025-49850

CVE-2025-49850 concerns LS Electric GMWin 4. a heap-based buffer overflow during PRJ file parsing caused by insufficient validation, leading to memory corruption (reading/writing past end of allocated data structures). Affected product: GMWin 4 (e.g., version 4.18 cited). Impacts: potential memor...

8.4CVSS6.8AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/17 6:34 p.m.3 views

CVE-2025-49849 Out-of-bounds Read in Write in LS Electric GMWin 4

An Out-of-bounds Read vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS7.3AI score0.00141EPSS
Exploits0References1
CVE
CVE
added 2025/06/17 6:34 p.m.13 views

CVE-2025-49849

CVE-2025-49849 affects LS Electric GMWin 4 (PRJ file parsing). Multiple connected sources describe a memory corruption issue: a heap-based buffer overflow and an out-of-bounds read/write arising from insufficient validation of user-supplied data during PRJ parsing. Some entries (CNNVD) specifical...

8.4CVSS6.8AI score0.00141EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/17 6:31 p.m.3 views

CVE-2025-49848 Out-of-bounds Write in LS Electric GMWin 4

An out-of-bounds write vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS5.8AI score0.00155EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/06/17 6:31 p.m.3 views

CVE-2025-49848

An out-of-bounds write vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, such as reading and writing past the end of allocated data...

8.4CVSS5.8AI score0.00155EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/06/17 6:31 p.m.11 views

CVE-2025-49848

CVE-2025-49848 corresponds to LS Electric GMWin 4, involving an Out-of-bounds Write during PRJ file parsing caused by insufficient input validation. Documented effects include memory corruption (reading/writing past end of allocated data structures). Several connected sources tie this to GMWin 4 ...

8.4CVSS5.8AI score0.00155EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/06/17 12:0 a.m.1 views

LS Electric GMWin 4 缓冲区错误漏洞

LS Electric GMWin 4 is a software development tool from the South Korean company LS Electric. A buffer error vulnerability exists in LS Electric GMWin 4 version 4.18, which stems from a lack of validation of user-supplied data when parsing a PRJ file, and can lead to out-of-bounds reads and memor...

8.4CVSS6.7AI score0.00141EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/17 12:0 a.m.6 views

LS Electric GMWin 4 缓冲区错误漏洞

LS Electric GMWin 4 is a software development tool from the South Korean company LS Electric. A buffer error vulnerability exists in LS Electric GMWin 4 version 4.18, which stems from a lack of validation of user-supplied data when parsing a PRJ file, and can lead to out-of-bounds writes and memo...

8.4CVSS6.7AI score0.00155EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/17 12:0 a.m.4 views

PT-2025-25747

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description An Out-of-bounds Write issue exists within the parsing of PRJ files due to the lack of proper validation of user-supplied data. This can result in memory corruption issues, such as reading and...

8.4CVSS5.4AI score0.00155EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/06/17 12:0 a.m.6 views

LS Electric GMWin 4 安全漏洞

LS Electric GMWin 4 is a software development tool from the South Korean company LS Electric. A security vulnerability exists in LS Electric GMWin 4 version 4.18, which stems from a lack of validation of user-supplied data when parsing a PRJ file, and could result in a heap buffer overflow and...

8.4CVSS7.1AI score0.00143EPSS
Exploits0References2
NVD
NVD
added 2020/09/16 4:15 p.m.19 views

CVE-2020-7528

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect V3.6.3.574 and prior which could allow arbitrary code execution when an attacker builds a custom .PRJ file containing a malicious serialized buffer...

7.8CVSS0.01357EPSS
Exploits0References1
Prion
Prion
added 2020/09/16 4:15 p.m.11 views

Deserialization of untrusted data

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect V3.6.3.574 and prior which could allow arbitrary code execution when an attacker builds a custom .PRJ file containing a malicious serialized buffer...

6.8CVSS7.9AI score0.01357EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/09/16 3:39 p.m.18 views

CVE-2020-7528

A CWE-502 Deserialization of Untrusted Data vulnerability exists in SCADAPack 7x Remote Connect V3.6.3.574 and prior which could allow arbitrary code execution when an attacker builds a custom .PRJ file containing a malicious serialized buffer...

7.9AI score0.01357EPSS
Exploits0References1
CVE
CVE
added 2020/09/16 3:39 p.m.49 views

CVE-2020-7528

SCADAPack 7x Remote Connect (versions up to 3.6.3.574) is affected by CWE-502 Deserialization of Untrusted Data. A vulnerability exists where an attacker can construct a malicious .PRJ file containing a serialized buffer that leads to arbitrary code execution. The issue is consistently described ...

7.8CVSS7.8AI score0.01357EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/03/05 12:0 a.m.3 views

Denial-of-service vulnerability in NA-VIEW V2.0 (for 15-inch touch screen) at Nanda Aotuo Technology Jiangsu Co.

NA-VIEW is a touch screen configuration software. NA-VIEW V2.0 for 15-inch touch screen of Nanda Aotuo Technology Jiangsu Co., Ltd. suffers from a denial-of-service vulnerability, which can be exploited by an attacker to construct a malformed prj file resulting in a program crash...

6.9AI score
Exploits0
Rows per page
Query Builder