Vulnerabilities > CVE-2022-40984 - Out-of-bounds Write vulnerability in Yokogawa Wtviewere 761941 and Wtviewerefree

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

yokogawa

CWE-787

critical

NVD

Published: 2022-10-24

Updated: 2022-10-25

Summary

Stack-based buffer overflow in WTViewerE series WTViewerE 761941 from 1.31 to 1.61 and WTViewerEfree from 1.01 to 1.52 allows an attacker to cause the product to crash by processing a long file name.

Vulnerable Configurations

Part	Description	Count
Application	Yokogawa Yokogawa Wtviewerefree 1.01 Yokogawa Wtviewerefree 1.52 Yokogawa Wtviewere 761941 1.31 Yokogawa Wtviewere 761941 1.61	4

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://jvn.jp/en/vu/JVNVU99955870/index.html
https://cdn.aff.yokogawa.com/8/756/details/Vulnerability_in_YOKOGAWA_application_software_WTViewerE_r0_e.pdf