Vulnerabilities > CVE-2023-22360 - Use After Free vulnerability in Jtekt Screen Creator Advance 2 0.1.1.4

047910
CVSS 7.8 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
jtekt
CWE-416

Summary

Use-after free vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier due to lack of error handling process even when an error was detected. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.

Vulnerable Configurations

Part Description Count
Application
Jtekt
2

Common Weakness Enumeration (CWE)