Vulnerability Details CVE-2021-22670
An uninitialized pointer may be exploited in Fatek FvDesigner Version 1.5.76 and prior while the application is processing project files, allowing an attacker to craft a special project file that may permit arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 38.5%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2021-22670
-
cpe:2.3:a:fatek:fvdesigner:-
-
cpe:2.3:a:fatek:fvdesigner:1.1
-
cpe:2.3:a:fatek:fvdesigner:1.1.2
-
cpe:2.3:a:fatek:fvdesigner:1.5.76