cbcvebase.
CVE-2011-4874
published 2012-04-13

CVE-2011-4874: Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service…

PriorityP431high7.9CVSS 2.0
AVAACMAuNCCICAC
EPSS
1.53%
71.6th percentile
Use-after-free vulnerability in MICROSYS PROMOTIC before 8.1.7 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service (data corruption and application crash) via a crafted project (aka .pra) file.

Affected

21 ranges
VendorProductVersion rangeFixed in
microsyspromotic<= 8.1.6
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
microsyspromotic
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.