Описание
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary memory, which could lead to code execution.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Release NotesVendor Advisory
- ExploitThird Party Advisory
- ExploitThird Party Advisory
- Release NotesVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sweetscape:010_editor:9.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00591
Низкий
5.5 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
github
больше 3 лет назад
In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary memory, which could lead to code execution.
EPSS
Процентиль: 69%
0.00591
Низкий
5.5 Medium
CVSS3
5.8 Medium
CVSS2
Дефекты
CWE-787