CVE-2022-22725

HIGH Year: 2022
CVSS v3 Score
8.8
High
CVSS v2 Score
8.3
High
Weakness Type
CWE-120
View all →

Vulnerability Description

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be impacted. Affected Product: Easergy P3 (All versions prior to V30.205)

Related Vulnerabilities

CVE-2006-2492

HIGH
CVSS:8.8(High)

Buffer overflow in Microsoft Word in Office 2000 SP3, Office XP SP3, Office 2003 Sp1 and SP2, and Microsoft Works Suites through 2006, allows user-assisted attackers to execute arbitrary code via a ma...

CWE-1202006

CVE-2009-0182

HIGH
CVSS:8.8(High)

Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in a File line in a .pls file, as demonstrated by an http URL on a File1 line.

CWE-1202009

CVE-2010-3844

HIGH
CVSS:8.8(High)

An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack.

CWE-1202010

CVE-2011-10005

HIGH
CVSS:8.8(High)

A vulnerability, which was classified as critical, was found in EasyFTP 1.7.0.2. Affected is an unknown function of the component MKD Command Handler. The manipulation leads to buffer overflow. It is ...

CWE-1202011

CVE-2011-2690

HIGH
CVSS:8.8(High)

Buffer overflow in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4, when used by an application that calls the png_rgb_to_gray function but not the png_set_...

CWE-1202011

CVE-2013-2075

HIGH
CVSS:8.8(High)

Multiple buffer overflows in the (1) R5RS char-ready, (2) tcp-accept-ready, and (3) file-select procedures in Chicken through 4.8.0.3 allows attackers to cause a denial of service (crash) by opening a...

CWE-1202013