cbcvebase.
CVE-2022-2329
published 2023-02-01

CVE-2022-2329: A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote…

critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
A CWE-190: Integer Overflow or Wraparound vulnerability exists that could cause heap-based buffer overflow, leading to denial of service and potentially remote code execution when an attacker sends multiple specially crafted messages. Affected Products: IGSS Data Server - IGSSdataServer.exe (Versions prior to V15.0.0.22073)

Affected

2 ranges
VendorProductVersion rangeFixed in
schneider-electricinteractive_graphical_scada_system< 15.0.0.2207415.0.0.22074
schneider_electricigss_data_server>= All < V15.0.0.22073V15.0.0.22073