5 matches found
CVE-2025-7228
INVT VT-Designer is affected by a PM3 file parsing vulnerability described as an out-of-bounds write that can lead to remote code execution. The flaw arises from insufficient validation of user-supplied data during PM3 parsing, allowing an attacker who entices the target to open a malicious file ...
CVE-2025-7231
CVE-2025-7231 affects INVT VT-Designer. The flaw is in PM3 file parsing, caused by insufficient validation that can cause a write past the end of an allocated data structure, enabling remote code execution. Exploitation requires user interaction (target opens a malicious PM3/VM/related file or vi...
CVE-2025-7227
CVE-2025-7227 affects INVT VT-Designer, where the PM3 file parsing is vulnerable to an out-of-bounds write. The flaw stems from insufficient validation of user-supplied data, allowing an attacker to execute arbitrary code in the context of the current process. Exploitation requires user interacti...
CVE-2025-7230
CVE-2025-7230 affects INVT VT-Designer (VT-Designer PM3 files). The root cause is a type confusion arising from insufficient validation during PM3 file parsing, enabling remote code execution in the context of the affected process. Exploitation requires user interaction (target visits a malicious...
CVE-2025-7229
INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. The PM3 file parsing flaw allows an attacker to execute code in the current process via a crafted PM3 file, requiring user interaction (the target must visit a malicious page or open a malicious file). The ...