CVE-2020-27280

Summary

A use after free issue has been identified in the way ISPSoft(v3.12 and prior) processes project files, allowing an attacker to craft a special project file that may allow arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
n/aISPSoftv3.12 and prioraffected

Weaknesses

  • CWE-416: USE AFTER FREE CWE-416

ADP Enrichment

CVE Program Container

Additional References

References