Vulnerability Details CVE-2021-38415
Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable a heap-based buffer overflow when parsing a specially crafted project file, which may allow an attacker to execute arbitrary code.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.9%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2021-38415
-
cpe:2.3:a:fujielectric:v-server:3.3.24.0
-
cpe:2.3:a:fujielectric:v-server:4.0.10.0
-
cpe:2.3:a:fujielectric:v-server:4.0.3.0
-
cpe:2.3:a:fujielectric:v-server:4.0.9.0
-
cpe:2.3:a:fujielectric:v-simulator:4.0.10.0