Vulnerabilities > Hornerautomation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-27184 | Out-of-bounds Write vulnerability in Hornerautomation Cscape The affected product is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code. | 6.8 |
| 2022-06-02 | CVE-2022-28690 | Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape The affected product is vulnerable to an out-of-bounds write via uninitialized pointer, which may allow an attacker to execute arbitrary code. | 7.8 |
| 2022-06-02 | CVE-2022-29488 | Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape The affected product is vulnerable to an out-of-bounds read via uninitialized pointer, which may allow an attacker to execute arbitrary code. | 7.8 |
| 2022-06-02 | CVE-2022-30540 | Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape The affected product is vulnerable to a heap-based buffer overflow via uninitialized pointer, which may allow an attacker to execute arbitrary code | 7.8 |
| 2022-03-25 | CVE-2021-44462 | Improper Input Validation vulnerability in Hornerautomation Cscape Envisionrv This vulnerability can be exploited by parsing maliciously crafted project files with Horner Automation Cscape EnvisionRV v4.50.3.1 and prior. | 5.8 |
| 2021-08-25 | CVE-2021-32975 | Out-of-bounds Read vulnerability in Hornerautomation Cscape Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. | 6.8 |
| 2021-08-25 | CVE-2021-32995 | Out-of-bounds Write vulnerability in Hornerautomation Cscape Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. | 6.8 |
| 2021-08-25 | CVE-2021-33015 | Access of Uninitialized Pointer vulnerability in Hornerautomation Cscape Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. | 6.8 |
| 2021-04-23 | CVE-2021-22682 | Unspecified vulnerability in Hornerautomation Cscape Cscape (All versions prior to 9.90 SP4) is configured by default to be installed for all users, which allows full permissions, including read/write access. | 7.8 |
| 2021-04-23 | CVE-2021-22678 | Out-of-bounds Write vulnerability in Hornerautomation Cscape Cscape (All versions prior to 9.90 SP4) lacks proper validation of user-supplied data when parsing project files. | 7.8 |