Vulnerabilities > CVE-2023-32539 - Unspecified vulnerability in Hornerautomation Cscape and Cscape Envisionrv
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Horner Automation Cscape lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds write at CScape_EnvisionRV+0x2e3c04. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |