CVE-2021-22712

A CWE-119:Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in Interactive Graphical SCADA System (IGSS) Definition (Def.exe) V15.0.0.21041 and prior, which could result in arbitrary read or write conditions when malicious CGF (Configuration Group File) file is imported to IGSS Definition due to an unchecked pointer address.
Configurations

Configuration 1 (hide)

cpe:2.3:a:schneider-electric:interactive_graphical_scada_system:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:50

Type Values Removed Values Added
References () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-068-01 - Patch, Vendor Advisory () https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-068-01 - Patch, Vendor Advisory
References () https://www.se.com/ww/en/download/document/SEVD-2021-068-01 - Broken Link, Vendor Advisory () https://www.se.com/ww/en/download/document/SEVD-2021-068-01 - Broken Link, Vendor Advisory

Information

Published : 2021-03-11 21:15

Updated : 2024-11-21 05:50


NVD link : CVE-2021-22712

Mitre link : CVE-2021-22712

CVE.ORG link : CVE-2021-22712


JSON object : View

Products Affected

schneider-electric

  • interactive_graphical_scada_system
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer