Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2024-5597 | 1 Fujielectric | 1 Monitouch V-sft | 2024-06-12 | N/A | 9.8 CRITICAL |
| Fuji Electric Monitouch V-SFTÂ is vulnerable to a type confusion, which could cause a crash or code execution. | |||||
| CVE-2022-30538 | 1 Fujielectric | 1 Monitouch V-sft | 2024-02-04 | 6.8 MEDIUM | 7.8 HIGH |
| Out-of-bounds write vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file. | |||||
| CVE-2022-30546 | 1 Fujielectric | 1 Monitouch V-sft | 2024-02-04 | 6.8 MEDIUM | 7.8 HIGH |
| Out-of-bounds read vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file. | |||||
| CVE-2017-9659 | 1 Fujielectric | 1 Monitouch V-sft | 2024-02-04 | 6.8 MEDIUM | 8.8 HIGH |
| A Stack-Based Buffer Overflow issue was discovered in Fuji Electric Monitouch V-SFT versions prior to Version 5.4.43.0. The stack-based buffer overflow vulnerability has been identified, which may cause a crash or allow remote code execution. | |||||
| CVE-2017-9662 | 1 Fujielectric | 1 Monitouch V-sft | 2024-02-04 | 4.6 MEDIUM | 5.3 MEDIUM |
| An Improper Privilege Management issue was discovered in Fuji Electric Monitouch V-SFT versions prior to Version 5.4.43.0. Monitouch V-SFT is installed in a directory with weak access controls by default, which could allow an authenticated attacker with local access to escalate privileges. | |||||
| CVE-2017-9660 | 1 Fujielectric | 1 Monitouch V-sft | 2024-02-04 | 6.8 MEDIUM | 8.8 HIGH |
| A Heap-Based Buffer Overflow was discovered in Fuji Electric Monitouch V-SFT versions prior to Version 5.4.43.0. A heap-based buffer overflow vulnerability has been identified, which may cause a crash or allow remote code execution. | |||||