1 results (0.003 seconds)

CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0

CVE-2021-44462 – Horner Automation Cscape EnvisionRV Improper Input Validation

https://notcve.org/view.php?id=CVE-2021-44462

25 Mar 2022 — This vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior. The issues result from the lack of proper validation of user-supplied data, which can result in reads and writes past the end of allocated data structures. User interaction is required to exploit this vulnerability as an attacker must trick a valid user to open a malicious HMI project file. Esta vulnerabilidad puede ser explotada al analizar archivos de proyecto mali... • https://www.cisa.gov/uscert/ics/advisories/icsa-21-355-02 • CWE-20: Improper Input Validation •