CVE-2020-12525

Summary

M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.

Affected Software

VendorProductVersion RangeStatus
M&M SoftwarefdtCONTAINER Componentunspecified < 3.5affected
M&M SoftwarefdtCONTAINER Component3.5 < 3.5.20304.xaffected
M&M SoftwarefdtCONTAINER Component3.6 < 3.6.20304.xaffected
M&M SoftwarefdtCONTAINER Applicationunspecified < 4.5affected
M&M SoftwarefdtCONTAINER Application4.5 < 4.5.20304.xaffected
M&M SoftwarefdtCONTAINER Application4.6 < 4.6.20304.xaffected
M&M SoftwaredtmlINSPECTOR3affected
Pepperl+Fuchs/PACTwarePACTwareunspecified <= 5.0.5.31affected
WeidmüllerWI Managerunspecified <= 2.5.1affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of Untrusted Data

ADP Enrichment

CVE Program Container

Additional References

References