CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-1888 – Fuji Electric Alpha7 PC Loader Fuji Electric Alpha7 PC Loader
https://notcve.org/view.php?id=CVE-2022-1888
Alpha7 PC Loader (All versions) is vulnerable to a stack-based buffer overflow while processing a specifically crafted project file, which may allow an attacker to execute arbitrary code. Alpha7 PC Loader (Todas las versiones) es vulnerable a un desbordamiento del búfer en la región stack de la memoria mientras procesa un archivo de proyecto específicamente diseñado, lo que puede permitir a un atacante ejecutar código arbitrario • https://www.cisa.gov/uscert/ics/advisories/icsa-22-151-01 • CWE-121: Stack-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 6.6EPSS: 0%CPEs: 2EXPL: 0CVE-2019-10975 – Fuji Electric Alpha7 PC Loader A7P File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-10975
An out-of-bounds read vulnerability has been identified in Fuji Electric Alpha7 PC Loader Versions 1.1 and prior, which may crash the system. Una vulnerabilidad de lectura fuera de los límites ha sido identificada en Alpha7 PC Loader versiones 1.1 y anteriores de Fuji Electric, lo que puede bloquear el sistema. This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Fuji Electric Alpha7. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of A7P files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. • http://www.securityfocus.com/bid/108359 https://felib.fujielectric.co.jp/download/search2.htm?dosearch=1&site=global&lang=en&documentGroup=software https://www.us-cert.gov/ics/advisories/ICSA-19-136-02%2C https://www.zerodayinitiative.com/advisories/ZDI-19-517 • CWE-125: Out-of-bounds Read •