Vulnerability Details CVE-2022-29522
Use after free vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.7%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2022-29522
-
cpe:2.3:a:fujielectric:v-server:3.3.24.0
-
cpe:2.3:a:fujielectric:v-server:4.0.10.0
-
cpe:2.3:a:fujielectric:v-server:4.0.11.0
-
cpe:2.3:a:fujielectric:v-server:4.0.12.0
-
cpe:2.3:a:fujielectric:v-server:4.0.13.0
-
cpe:2.3:a:fujielectric:v-server:4.0.3.0
-
cpe:2.3:a:fujielectric:v-server:4.0.9.0
-
cpe:2.3:a:fujielectric:v-sft:-
-
cpe:2.3:a:fujielectric:v-sft:6.0.0.0
-
cpe:2.3:a:fujielectric:v-sft:6.1.5.0