CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-25755
https://notcve.org/view.php?id=CVE-2023-25755
Screen Creator Advance 2 Ver.0.1.1.4 Build01A and earlier is vulnerable to improper restriction of operations within the bounds of a memory buffer (CWE-119) due to improper check of its data size when processing a project file. If a user of Screen Creator Advance 2 opens a specially crafted project file, information may be disclosed and/or arbitrary code may be executed. • https://jvn.jp/en/vu/JVNVU99710864 https://www.electronics.jtekt.co.jp/en/topics/202303315311 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22349
https://notcve.org/view.php?id=CVE-2023-22349
Out-of-bound read vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier because the end of data cannot be verified when processing screen management information. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. • https://jvn.jp/en/vu/JVNVU98917488 https://www.electronics.jtekt.co.jp/en/topics/202302035233 https://www.electronics.jtekt.co.jp/jp/topics/2023020313454 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22350
https://notcve.org/view.php?id=CVE-2023-22350
Out-of-bound read vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier because the end of data cannot be verified when processing parts management information. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. • https://jvn.jp/en/vu/JVNVU98917488 https://www.electronics.jtekt.co.jp/en/topics/202302035233 https://www.electronics.jtekt.co.jp/jp/topics/2023020313454 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22353
https://notcve.org/view.php?id=CVE-2023-22353
Out-of-bound read vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier because the end of data cannot be verified when processing control management information. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. • https://jvn.jp/en/vu/JVNVU98917488 https://www.electronics.jtekt.co.jp/en/topics/202302035233 https://www.electronics.jtekt.co.jp/jp/topics/2023020313454 • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-22360
https://notcve.org/view.php?id=CVE-2023-22360
Use-after free vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier due to lack of error handling process even when an error was detected. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution. • https://jvn.jp/en/vu/JVNVU98917488 https://www.electronics.jtekt.co.jp/en/topics/202302035233 https://www.electronics.jtekt.co.jp/jp/topics/2023020313454 • CWE-416: Use After Free •