Vulnerability Details CVE-2022-2866
FATEK FvDesigner version 1.5.103 and prior is vulnerable to an out-of-bounds write while processing project files. If a valid user is tricked into using maliciously crafted project files, an attacker could achieve arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.8%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2022-2866
-
cpe:2.3:a:fatek:fvdesigner:-
-
cpe:2.3:a:fatek:fvdesigner:1.1
-
cpe:2.3:a:fatek:fvdesigner:1.1.2
-
cpe:2.3:a:fatek:fvdesigner:1.5.76
-
cpe:2.3:a:fatek:fvdesigner:1.5.88