Vulnerabilities > Hornerautomation

DATE CVE VULNERABILITY TITLE RISK
2022-06-02 CVE-2022-27184 Out-of-bounds Write vulnerability in Hornerautomation Cscape
The affected product is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code.
local
low complexity
hornerautomation CWE-787
7.8
2022-06-02 CVE-2022-28690 Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape
The affected product is vulnerable to an out-of-bounds write via uninitialized pointer, which may allow an attacker to execute arbitrary code.
local
low complexity
hornerautomation CWE-824
7.8
2022-06-02 CVE-2022-29488 Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape
The affected product is vulnerable to an out-of-bounds read via uninitialized pointer, which may allow an attacker to execute arbitrary code.
local
low complexity
hornerautomation CWE-824
7.8
2022-06-02 CVE-2022-30540 Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape
The affected product is vulnerable to a heap-based buffer overflow via uninitialized pointer, which may allow an attacker to execute arbitrary code
local
low complexity
hornerautomation CWE-824
7.8
2022-03-25 CVE-2021-44462 Improper Input Validation vulnerability in Hornerautomation Cscape Envisionrv 4.50.3.1
This vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior.
local
low complexity
hornerautomation CWE-20
7.1
2021-08-25 CVE-2021-32975 Unspecified vulnerability in Hornerautomation Cscape
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files.
local
low complexity
hornerautomation
7.8
2021-08-25 CVE-2021-32995 Out-of-bounds Write vulnerability in Hornerautomation Cscape
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files.
local
low complexity
hornerautomation CWE-787
7.8
2021-08-25 CVE-2021-33015 Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape
Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files.
local
low complexity
hornerautomation CWE-824
7.8
2021-04-23 CVE-2021-22682 Unspecified vulnerability in Hornerautomation Cscape
Cscape (All versions prior to 9.90 SP4) is configured by default to be installed for all users, which allows full permissions, including read/write access.
local
low complexity
hornerautomation
7.8
2021-04-23 CVE-2021-22678 Out-of-bounds Write vulnerability in Hornerautomation Cscape
Cscape (All versions prior to 9.90 SP4) lacks proper validation of user-supplied data when parsing project files.
local
low complexity
hornerautomation CWE-787
7.8