Описание
GE CIMPICITY versions 2022 and prior is
vulnerable when data from faulting address controls code flow starting at gmmiObj!CGmmiOptionContainer, which could allow an attacker to execute arbitrary code.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 2022 (включая)
cpe:2.3:a:ge:cimplicity:*:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
Дефекты
CWE-822
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
GE CIMPICITY versions 2022 and prior is vulnerable when data from faulting address controls code flow starting at gmmiObj!CGmmiOptionContainer, which could allow an attacker to execute arbitrary code.
EPSS
Процентиль: 21%
0.00068
Низкий
7.8 High
CVSS3
Дефекты
CWE-822