Out-of-Bounds Write Vulnerability in Fuji Electric Tellus Lite V-Simulator
CVE-2022-3087

7.8HIGH

Key Information:

Vendor

Fuji Electric

Status
Tellus Lite V-simulator
Vendor
CVE Published:
17 January 2023

What is CVE-2022-3087?

Fuji Electric Tellus Lite V-Simulator versions up to 4.0.12.0 are prone to an out-of-bounds write vulnerability that could permit an attacker to execute arbitrary code. This flaw arises from improper bounds checking, which may allow unauthorized access to the system's memory and manipulation of the application’s execution flow. Addressing this issue is crucial for maintaining the security and integrity of systems utilizing the affected software.

Affected Version(s)

Tellus Lite V-Simulator 0

References

https://www.cisa.gov/uscert/ics/advisories/icsa-22-354-01
government-resource

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Kimiya
Trend Micro Zero Day Initiative
JSON
.