CVE-2026-7310 | THREATINT

Description

A heap-based buffer overflow vulnerability exists in XML parser functionality in the HiDraw. An authenticated malicious user with local access can exploit this vulnerability using a specially crafted XML file which may lead to memory corruption and potential arbitrary code execution. Successful exploitation could result in application crashes (denial of service) and compromise the confidentiality and integrity of the affected system.

PUBLISHED Reserved 2026-04-28 | Published 2026-05-26 | Updated 2026-05-26 | Assigner Hitachi Energy

MEDIUM: 4.4CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-122 Heap-based buffer overflow

Product status

Default status

unaffected

9.0 (custom) before 9.22

affected

References

publisher.hitachienergy.com/...DocumentPartId=&Action=Launch

cve.org (CVE-2026-7310)

nvd.nist.gov (CVE-2026-7310)

Download JSON