QwikSec

Security Database

CVE

CWE

Training

CVE-2021-22752

Published: Jun 11, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A CWE-787: Out-of-bounds write vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to missing size checks, when a malicious WSP (Workspace) file is being parsed by IGSS Definition.

Vendor	Product	Versions
n/a	IGSS Definition (Def.exe) V15.0.0.21140 and prior	affected `IGSS Definition (Def.exe) V15.0.0.21140 and prior`

Weaknesses (CWE)

References

http://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-159-01

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.