CVE-2019-10974

Summary

NREL EnergyPlus, Versions 8.6.0 and possibly prior versions, The application fails to prevent an exception handler from being overwritten with arbitrary code.

Affected Software

VendorProductVersion RangeStatus
National Renewable Energy Laboratory (NREL)EnergyPlusVersions 8.6.0 and possibly prior versionsaffected

Weaknesses

  • CWE-121: STACK-BASED BUFFER OVERFLOW CWE-121

ADP Enrichment

CVE Program Container

Additional References

References