Vulnerability Details CVE-2023-22360
Use-after free vulnerability exists in Screen Creator Advance 2 Ver.0.1.1.4 Build01 and earlier due to lack of error handling process even when an error was detected. Having a user of Screen Creator Advance 2 to open a specially crafted project file may lead to information disclosure and/or arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 18.3%
CVSS Severity
CVSS v3 Score 7.8
References
- https://jvn.jp/en/vu/JVNVU98917488/
- https://www.electronics.jtekt.co.jp/en/topics/202302035233/
- https://www.electronics.jtekt.co.jp/jp/topics/2023020313454/
- https://jvn.jp/en/vu/JVNVU98917488/
- https://www.electronics.jtekt.co.jp/en/topics/202302035233/
- https://www.electronics.jtekt.co.jp/jp/topics/2023020313454/
Products affected by CVE-2023-22360
-
cpe:2.3:a:jtekt:screen_creator_advance_2:0.1.1.4