CVE-2022-1523 – Fuji Electric D300win Write-what-where condition
https://notcve.org/view.php?id=CVE-2022-1523
Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition, which could allow an attacker to overwrite program memory to manipulate the flow of information. Fuji Electric D300win versiones anteriores a 3.7.1.17, es vulnerable a una condición de escritura en cualquier lugar, lo que podría permitir a un atacante sobrescribir la memoria del programa para manipular el flujo de información • https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05 • CWE-123: Write-what-where Condition CWE-787: Out-of-bounds Write •
CVE-2022-1738 – Fuji Electric D300win Out-of-bounds Read
https://notcve.org/view.php?id=CVE-2022-1738
Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to an out-of-bounds read, which could allow an attacker to leak sensitive data from the process memory. Fuji Electric D300win versiones anteriores a 3.7.1.17, es vulnerable a una lectura fuera de límites, que podría permitir a un atacante filtrar datos confidenciales de la memoria del proceso • https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05 • CWE-125: Out-of-bounds Read •