Vulnetix
Try Vulnetix Request Demo
CVE-2021-22756 PUBLISHED CVSS 7.800000190734863 HIGH

A CWE-125: Out-of-bounds read vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in disclosure of information or remote code execution due to lack of user-supplied data validation, when a malicious CGF file is imported to IGSS Definition.

EPSS 0.43% · 62.6th percentile

Risk Scores

CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.43%
62.6th percentile

Affected Products

VendorProductVersions
schneider-electricinteractive_graphical_scada_system0
n/aIGSS Definition (Def.exe) V15.0.0.21140 and priorIGSS Definition (Def.exe) V15.0.0.21140 and prior

Timeline

References

Open in Interactive Console →