Vulnerability Details CVE-2023-22346
Out-of-bound read vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier because the end of data cannot be verified when processing template information. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.4%
CVSS Severity
CVSS v3 Score 7.8
References
- https://jvn.jp/en/vu/JVNVU98917488/
- https://www.electronics.jtekt.co.jp/en/topics/202302035233/
- https://www.electronics.jtekt.co.jp/jp/topics/2023020313454/
- https://jvn.jp/en/vu/JVNVU98917488/
- https://www.electronics.jtekt.co.jp/en/topics/202302035233/
- https://www.electronics.jtekt.co.jp/jp/topics/2023020313454/
Products affected by CVE-2023-22346
-
cpe:2.3:a:jtekt:screen_creator_advance_2:0.1.1.4