CVE-2021-22802

Summary

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is received on the network. Affected Product: Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)

Affected Software

VendorProductVersion RangeStatus
n/aInteractive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)Interactive Graphical SCADA System Data Collector (dc.exe) (V15.0.0.21243 and prior)affected

Weaknesses

  • CWE-120: CWE-120: Buffer Copy without Checking Size of Input

ADP Enrichment

CVE Program Container

Additional References

References