CVE-2022-1523

MEDIUM

Fuji Electric D300win < 3.7.1.17 - Out-of-bounds Write

Title source: llm
STIX 2.1

Description

Fuji Electric D300win prior to version 3.7.1.17 is vulnerable to a write-what-where condition, which could allow an attacker to overwrite program memory to manipulate the flow of information.

References (1)

Core 1
Core References
Third Party Advisory, US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-05

Scores

CVSS v3 6.1
EPSS 0.0047
EPSS Percentile 37.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:H/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-123 CWE-787
Status published
Products (1)
fujielectric/d300win < 3.7.1.17
Published Oct 19, 2022
Tracked Since Feb 18, 2026