📦 Cscape

This vulnerability in Horner Automation Cscape allows local attackers to execute arbitrary code by tricking users into opening malicious CSP files. It affects Cscape versions 9.90 SP10 and prior, prim...

This vulnerability allows arbitrary code execution when a user opens a malicious CSP file. Attackers can exploit uninitialized pointer access to run code within the current process. This affects syste...

This vulnerability allows attackers to execute arbitrary code by exploiting improper validation in font file parsing. It affects applications that process FNT font files without proper bounds checking...

This vulnerability allows attackers to execute arbitrary code by exploiting a stack-based buffer overflow in project file parsing. Systems running affected versions of the software that process malici...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing project files. It affects industrial control systems using vulnerable software versions. ...

This vulnerability allows attackers to execute arbitrary code by exploiting improper input validation in Cscape project file parsing. An attacker can craft malicious project files to trigger an out-of...

CVE-2022-29488 is an out-of-bounds read vulnerability via uninitialized pointer in industrial control systems software. This could allow attackers to read sensitive memory data and potentially execute...

CVE-2022-27184 is an out-of-bounds write vulnerability that could allow attackers to execute arbitrary code on affected systems. This affects specific industrial control system (ICS) products, potenti...

CVE-2021-32975 is an out-of-bounds read vulnerability in Cscape software that could allow remote code execution when parsing malicious project files. Attackers could exploit this to execute arbitrary ...

CVE-2021-33015 is a memory corruption vulnerability in Cscape software where improper validation of project files allows an attacker to write beyond allocated memory boundaries via an uninitialized po...

CVE-2021-22678 is a memory corruption vulnerability in Cscape software that allows attackers to execute arbitrary code by tricking users into opening malicious project files. This affects all Cscape v...

CVE-2021-22663 is an out-of-bounds read vulnerability in Cscape software that allows arbitrary code execution when parsing malicious project files. Attackers can exploit this to run code with the same...