描述
A CWE-125 Out-of-bounds Read vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.
AI分析AI驱动
受影响产品
schneider-electricinteractive_graphical_scada_system
参考资料
- https://www.se.com/ww/en/download/document/SEVD-2020-315-03/Vendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-096/Third Party AdvisoryVDB Entry
- https://www.se.com/ww/en/download/document/SEVD-2020-315-03/Vendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-096/Third Party AdvisoryVDB Entry