CVE-2017-9636
CRITICALMitsubishi E-Designer <7.52 Build 344 - Memory Corruption
Title source: llmDescription
Mitsubishi E-Designer, Version 7.52 Build 344 contains five code sections which may be exploited to overwrite the heap. This can result in arbitrary code execution, compromised data integrity, denial of service, and system crash.
References (2)
Core 2
Core References
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-17-213-01
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/100097
Scores
CVSS v3
9.8
EPSS
0.0059
EPSS Percentile
69.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
CWE-122
Status
published
Products (1)
mitsubishielectric/e-designer
7.52
Published
Apr 17, 2018
Tracked Since
Feb 18, 2026