cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-22762,https://securityvulnerability.io/vulnerability/CVE-2021-22762,Improper Limitation of Pathname Vulnerability in IGSS Definition by Schneider Electric,"A vulnerability exists in IGSS Definition that allows for improper limitations on file pathnames, which could lead to remote code execution. This occurs when malicious CGF or WSP files are parsed by the application. Attackers can exploit this flaw to potentially execute arbitrary code within the context of the vulnerable application, posing significant security risks.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.002309999894350767,false,,false,false,false,,,false,false,,2021-06-11T15:40:47.000Z,0
CVE-2021-22752,https://securityvulnerability.io/vulnerability/CVE-2021-22752,Out-of-bounds Write Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds write vulnerability has been identified in IGSS Definition (Def.exe) versions V15.0.0.21140 and earlier. This flaw may enable an attacker to manipulate the handling of malicious WSP (Workspace) files, leading to potential data loss or remote code execution due to insufficient size checks during the parsing process. It is critical for users of the affected software to address this vulnerability by updating to a secure version.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0025100000202655792,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22754,https://securityvulnerability.io/vulnerability/CVE-2021-22754,Out-of-Bounds Write Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds write vulnerability has been identified in the IGSS Definition software by Schneider Electric. This issue arises from improper validation of user-supplied data when a malicious CGF file is imported. The flaw can potentially lead to loss of data or even remote code execution, enabling attackers to exploit the system if unpatched versions are in use. Users are advised to mitigate this risk by updating to the latest version and ensuring the integrity of input files.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.001550000044517219,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22755,https://securityvulnerability.io/vulnerability/CVE-2021-22755,Out-of-Bounds Write Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds write vulnerability exists in IGSS Definition, specifically in the handling of user-supplied data when importing malicious CGF files. This flaw stems from inadequate sanity checks, potentially leading to unauthorized information disclosure or remote code execution. Users of IGSS Definition versions V15.0.0.21140 and earlier are advised to evaluate their systems for exposure and consider implementing available security measures.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0014299999456852674,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22759,https://securityvulnerability.io/vulnerability/CVE-2021-22759,Use After Free Vulnerability in IGSS Definition by Schneider Electric,"A Use After Free vulnerability exists in IGSS Definition that may lead to significant security issues. When a malicious CGF file is imported, unchecked input data could result in data loss or remote code execution. This flaw affects IGSS Definition versions V15.0.0.21140 and earlier, posing risks to users who implement the vulnerable product. Immediate action should be considered to mitigate potential exploitation.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0021100000012665987,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22760,https://securityvulnerability.io/vulnerability/CVE-2021-22760,Release of Invalid Pointer Vulnerability in IGSS Definition by Schneider Electric,"A vulnerability exists in IGSS Definition (Def.exe) that could result in loss of data or remote code execution due to insufficient validation of user-supplied input data. When a malicious CGF file is imported, the lack of necessary checks can lead to unintended behavior within the application, exposing systems to potential threats.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.001550000044517219,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22753,https://securityvulnerability.io/vulnerability/CVE-2021-22753,Out-of-Bounds Read Vulnerability in Schneider Electric’s IGSS Definition Software,"An out-of-bounds read vulnerability exists in Schneider Electric's IGSS Definition software, specifically in versions V15.0.0.21140 and earlier. This vulnerability arises from inadequate length checks when parsing malicious WSP files. Exploiting this weakness could lead to data loss or enable the execution of arbitrary code remotely, posing significant security risks to affected systems.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0025100000202655792,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22756,https://securityvulnerability.io/vulnerability/CVE-2021-22756,Out-of-Bounds Read Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds read vulnerability exists in IGSS Definition (Def.exe) versions V15.0.0.21140 and earlier. This flaw could be exploited when a malicious CGF file is imported, leading to potential information disclosure or remote code execution due to insufficient validation of user-supplied data. Users of affected versions are advised to remain vigilant and implement necessary security measures.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0014299999456852674,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22757,https://securityvulnerability.io/vulnerability/CVE-2021-22757,Out-of-Bounds Read Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds read vulnerability exists in IGSS Definition that could lead to unintended information disclosure or remote code execution. This issue arises from the lack of proper sanity checks on user-supplied input data when a potentially malicious CGF file is imported. It emphasizes the need for robust input validation to safeguard against possible exploitation of the affected versions, specifically V15.0.0.21140 and earlier.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0014299999456852674,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22758,https://securityvulnerability.io/vulnerability/CVE-2021-22758,Access of Uninitialized Pointer Vulnerability in Schneider Electric IGSS Definition,"The access of uninitialized pointer vulnerability in Schneider Electric's IGSS Definition (version 15.0.0.21140 and earlier) stems from inadequate validation of user-supplied input data. When a malicious CGF file is imported, it could lead to data loss or allow for remote code execution. Proper safeguards and validation mechanisms should be implemented to prevent exploitation of this vulnerability.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.001550000044517219,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22761,https://securityvulnerability.io/vulnerability/CVE-2021-22761,Memory Buffer Vulnerability in IGSS Definition by Schneider Electric,"A vulnerability exists in IGSS Definition (Def.exe) versions prior to V15.0.0.21140 that can be exploited when an attacker imports a specially crafted CGF file. This vulnerability arises from insufficient length checks on user-supplied data, which can lead to potential information disclosure and unauthorized remote code execution.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.001180000021122396,false,,false,false,false,,,false,false,,2021-06-11T15:40:46.000Z,0
CVE-2021-22751,https://securityvulnerability.io/vulnerability/CVE-2021-22751,Out-of-Bounds Write Vulnerability in IGSS Definition by Schneider Electric,"An out-of-bounds write vulnerability in IGSS Definition (Def.exe) versions 15.0.0.21140 and prior allows for the potential execution of arbitrary code or information disclosure. This occurs due to inadequate input validation when a malicious Configuration Group File (CGF) is imported, posing significant risks to system security.",Schneider Electric,Igss Definition (def.exe) V15.0.0.21140 And Prior,7.8,HIGH,0.0006699999794363976,false,,false,false,false,,,false,false,,2021-06-11T15:40:45.000Z,0