Free of pointer not at start of buffer vulnerability exists in CX-One CX-One CXONE-AL[][]D-V4 (The version which was installed with a DVD ver. 4.61.1 or lower, and was updated through CX-One V4 auto update in January 2024 or prior) and Sysmac Studio SYSMAC-SE2[][][] (The version which was installed with a DVD ver. 1.56 or lower, and was updated through Sysmac Studio V1 auto update in January 2024 or prior). Opening a specially crafted project file may lead to arbitrary code execution.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-05-01T12:54:15.483Z

Updated: 2024-08-02T01:52:56.897Z

Reserved: 2024-04-03T10:57:10.684Z

Link: CVE-2024-31413

cve-icon Vulnrichment

Updated: 2024-05-01T14:59:52.823Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-01T13:15:52.080

Modified: 2024-11-21T09:13:29.177

Link: CVE-2024-31413

cve-icon Redhat

No data.