An uninitialized pointer may be exploited in Fatek FvDesigner Version 1.5.76 and prior while the application is processing project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
References
Link | Resource |
---|---|
https://us-cert.cisa.gov/ics/advisories/icsa-21-056-02 | Third Party Advisory US Government Resource |
Configurations
Information
Published : 2021-03-03 09:15
Updated : 2021-03-09 14:08
NVD link : CVE-2021-22670
Mitre link : CVE-2021-22670
JSON object : View
CWE
CWE-824
Access of Uninitialized Pointer
Products Affected
fatek
- fvdesigner