Out-of-Bounds Read Vulnerability in IGSS Definition by Schneider Electric
CVE-2021-22756
7.8HIGH
Key Information:
- Vendor
Schneider Electric
- Vendor
- CVE Published:
- 11 June 2021
What is CVE-2021-22756?
An out-of-bounds read vulnerability exists in IGSS Definition (Def.exe) versions V15.0.0.21140 and earlier. This flaw could be exploited when a malicious CGF file is imported, leading to potential information disclosure or remote code execution due to insufficient validation of user-supplied data. Users of affected versions are advised to remain vigilant and implement necessary security measures.
Affected Version(s)
IGSS Definition (Def.exe) V15.0.0.21140 and prior IGSS Definition (Def.exe) V15.0.0.21140 and prior