Vulnerabilities > CVE-2022-3379 - Out-of-bounds Write vulnerability in Hornerautomation Cscape
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Horner Automation's Cscape version 9.90 SP7 and prior does not properly validate user-supplied data. If a user opens a maliciously formed FNT file, then an attacker could execute arbitrary code within the current process by writing outside the memory buffer.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 25 |