Use after free vulnerability in CX-Programmer v9.76.1 and earlier which is a part of CX-One (v4.60) suite allows an attacker to cause information disclosure and/or arbitrary code execution by having a user to open a specially crafted CXP file. This vulnerability is different from CVE-2022-25230.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://jvn.jp/en/vu/JVNVU90121984/index.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2022-03-07T09:00:43
Updated: 2024-08-03T04:36:06.770Z
Reserved: 2022-02-22T00:00:00
Link: CVE-2022-25325
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-03-10T17:47:07.817
Modified: 2024-11-21T06:52:00.327
Link: CVE-2022-25325
Redhat
No data.