Home

Description

The application contains an out-of-bounds write vulnerability that can be exploited by an attacker to cause the program to write data past the end of an allocated memory buffer. This can lead to arbitrary code execution.

PUBLISHED Reserved 2026-06-03 | Published 2026-07-07 | Updated 2026-07-08 | Assigner icscert




HIGH: 8.4CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-787 Out-of-bounds write

Product status

Default status
unaffected

9.1_SP4_Build-42914
affected

Credits

Michael Heinzl reported these vulnerabilities to CISA. finder

References

www.cisa.gov/news-events/ics-advisories/icsa-26-188-06 government-resource

cve.org (CVE-2026-42953)

nvd.nist.gov (CVE-2026-42953)

Download JSON