CVE-2023-29167
https://notcve.org/view.php?id=CVE-2023-29167
Out-of-bound reads vulnerability exists in FRENIC RHC Loader v1.1.0.3. If a user opens a specially crafted FNE file, sensitive information on the system where the affected product is installed may be disclosed or arbitrary code may be executed. • https://felib.fujielectric.co.jp/download/details.htm?dataid=45829407&site=global&lang=en https://jvn.jp/en/vu/JVNVU97809354 • CWE-125: Out-of-bounds Read •
CVE-2023-29498
https://notcve.org/view.php?id=CVE-2023-29498
Improper restriction of XML external entity reference (XXE) vulnerability exists in FRENIC RHC Loader v1.1.0.3 and earlier. If a user opens a specially crafted project file, sensitive information on the system where the affected product is installed may be disclosed. • https://felib.fujielectric.co.jp/download/details.htm?dataid=45829407&site=global&lang=en https://jvn.jp/en/vu/JVNVU97809354 • CWE-611: Improper Restriction of XML External Entity Reference •
CVE-2023-29160
https://notcve.org/view.php?id=CVE-2023-29160
Stack-based buffer overflow vulnerability exists in FRENIC RHC Loader v1.1.0.3. If a user opens a specially crafted FNE file, sensitive information on the system where the affected product is installed may be disclosed or arbitrary code may be executed. • https://felib.fujielectric.co.jp/download/details.htm?dataid=45829407&site=global&lang=en https://jvn.jp/en/vu/JVNVU97809354 • CWE-787: Out-of-bounds Write •
CVE-2019-13512 – Fuji Electric FRENIC Loader FN1 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2019-13512
Fuji Electric FRENIC Loader 3.5.0.0 and prior is vulnerable to an out-of-bounds read vulnerability, which may allow an attacker to read limited information from the device. Fuji Electric FRENIC Loader versión 3.5.0.0 y anteriores, es susceptible a una vulnerabilidad de lectura fuera de límites, lo que puede permitir a un atacante leer información limitada desde el dispositivo. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Fuji Electric FRENIC Loader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FN1 files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. • https://www.us-cert.gov/ics/advisories/icsa-19-213-02 • CWE-125: Out-of-bounds Read •
CVE-2018-14798
https://notcve.org/view.php?id=CVE-2018-14798
Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. The program does not properly parse FNC files that may allow for information disclosure. Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a de FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA y FRENIC-Ace. El programa no analiza correctamente los archivos FNC que podrían permitir una divulgación de información. • http://www.securityfocus.com/bid/105408 https://ics-cert.us-cert.gov/advisories/ICSA-18-270-03 • CWE-125: Out-of-bounds Read •