The affected application lacks proper validation of user-supplied data when parsing project files (e.g., HMI). This could lead to an out-of-bounds write at CScape_EnvisionRV+0x2e3c04. An attacker could leverage this vulnerability to potentially execute arbitrary code in the context of the current process.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-06-06T15:11:19.755Z
Updated: 2024-08-02T15:18:37.603Z
Reserved: 2023-05-09T17:30:31.046Z
Link: CVE-2023-32539
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2023-06-06T16:15:10.297
Modified: 2023-06-12T16:35:32.033
Link: CVE-2023-32539
Redhat
No data.