Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Eaton Subscribe
Filtered by product Easysoft
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-6656 1 Eaton 1 Easysoft 2021-03-31 6.8 MEDIUM 7.8 HIGH
Eaton's easySoft software v7.xx prior to v7.22 are susceptible to file parsing type confusion remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user upload a malformed .E70 file in the application. The vulnerability arises due to improper validation of user data supplied through E70 file which is causing Type Confusion.
CVE-2020-6655 1 Eaton 1 Easysoft 2021-03-31 6.8 MEDIUM 7.8 HIGH
The Eaton's easySoft software v7.xx prior to v7.22 are susceptible to Out-of-bounds remote code execution vulnerability. A malicious entity can execute a malicious code or make the application crash by tricking user to upload the malformed .E70 file in the application. The vulnerability arises due to improper validation and parsing of the E70 file content by the application.