Lucene search
K

6 matches found

NVD
NVD
added 2021/06/11 4:15 p.m.26 views

CVE-2021-22759

A CWE-416: Use after free vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in loss of data or remote code execution due to use of unchecked input data, when a malicious CGF file is imported to IGSS Definition...

7.8CVSS0.01232EPSS
Exploits0References1
NVD
NVD
added 2021/06/11 4:15 p.m.24 views

CVE-2021-22757

A CWE-125: Out-of-bounds read vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in disclosure of information or remote code execution due to lack of sanity checks on user-supplied input data, when a malicious CGF file is imported to IGSS Definition...

7.8CVSS0.01265EPSS
Exploits0References1
Prion
Prion
added 2021/06/11 4:15 p.m.15 views

Out-of-bounds

A CWE-125: Out-of-bounds read vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in loss of data or remote code execution due to missing length checks, when a malicious WSP file is being parsed by IGSS Definition...

6.8CVSS7.8AI score0.01172EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2021/06/11 3:40 p.m.54 views

CVE-2021-22753

The CVE-2021-22753 vulnerability affects Schneider Electric IGSS Definition (Def.exe) v15.0.0.21140 and earlier, caused by missing length checks when parsing malicious WSP files, leading to a CWE-125 out-of-bounds read that could result in data loss or remote code execution. Schneider Electric fi...

7.8CVSS7.8AI score0.01172EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/06/11 3:40 p.m.29 views

CVE-2021-22755

A CWE-787: Out-of-bounds write vulnerability exists inIGSS Definition Def.exe V15.0.0.21140 and prior that could result in disclosure of information or remote code execution due to lack of sanity checks on user-supplied data, when a malicious CGF file is imported to IGSS Definition...

8AI score0.01265EPSS
Exploits0References1
CVE
CVE
added 2021/06/11 3:40 p.m.51 views

CVE-2021-22755

The connected sources confirm CVE-2021-22755 affects Schneider Electric IGSS Definition (Def.exe) up to version 15.0.0.21140, with an out-of-bounds write vulnerability arising from insufficient validation/sanity checks when importing a CGF file. Impact is disclosure of information or remote code ...

7.8CVSS7.7AI score0.01265EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder