CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-47317
https://notcve.org/view.php?id=CVE-2022-47317
Out-of-bounds write vulnerability in V-Server v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted project file. • https://jvn.jp/en/vu/JVNVU92811888/index.html https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-46360
https://notcve.org/view.php?id=CVE-2022-46360
Out-of-bounds read vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file. • https://jvn.jp/en/vu/JVNVU90679513/index.html https://monitouch.fujielectric.com/site/download-e/09vsft6_inf/index.php • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-41645
https://notcve.org/view.php?id=CVE-2022-41645
Out-of-bounds read vulnerability in V-Server v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted project file. • https://jvn.jp/en/vu/JVNVU92811888/index.html https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-43448
https://notcve.org/view.php?id=CVE-2022-43448
Out-of-bounds write vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file. • https://jvn.jp/en/vu/JVNVU90679513/index.html https://monitouch.fujielectric.com/site/download-e/09vsft6_inf/index.php • CWE-787: Out-of-bounds Write •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1523 – Fuji Electric D300win Write-what-where condition
https://notcve.org/view.php?id=CVE-2022-1523
Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition, which could allow an attacker to overwrite program memory to manipulate the flow of information. Fuji Electric D300win versiones anteriores a 3.7.1.17, es vulnerable a una condición de escritura en cualquier lugar, lo que podría permitir a un atacante sobrescribir la memoria del programa para manipular el flujo de información • https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05 • CWE-123: Write-what-where Condition CWE-787: Out-of-bounds Write •