Описание
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
Ссылки
- MitigationThird Party AdvisoryUS Government Resource
- MitigationThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 3.42 (включая)
cpe:2.3:a:omron:cx-supervisor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00149
Низкий
5 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-125
CWE-125
Связанные уязвимости
CVSS3: 5
github
больше 3 лет назад
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
EPSS
Процентиль: 36%
0.00149
Низкий
5 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-125
CWE-125