VYPR

TELLUS

by Tellus

CVEs (8)

  • CVE-2023-47582HigNov 15, 2023
    risk 0.51cvss 7.8epss 0.00

    Access of uninitialized pointer vulnerability exists in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file (X1, V8, or V9 file), information may be disclosed and/or arbitrary code may be executed.

  • CVE-2023-47581HigNov 15, 2023
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read vulnerability exists in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file (X1, V8, or V9 file), information may be disclosed and/or arbitrary code may be executed.

  • CVE-2023-47580HigNov 15, 2023
    risk 0.51cvss 7.8epss 0.00

    Multiple improper restriction of operations within the bounds of a memory buffer issues exist in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file (X1, V8, or V9 file), information may be disclosed and/or arbitrary code…

  • CVE-2023-32288HigJun 19, 2023
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM file may lead to information disclosure and/or arbitrary code execution.

  • CVE-2023-32273HigJun 19, 2023
    risk 0.51cvss 7.8epss 0.00

    Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32538 and CVE-2023-32201.

  • CVE-2023-32201HigJun 19, 2023
    risk 0.51cvss 7.8epss 0.00

    Stack-based buffer overflow vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted SIM2 file may lead to information disclosure and/or arbitrary code execution. This vulnerability is different from CVE-2023-32538 and CVE-2023-32273.

  • CVE-2022-46360HigJan 3, 2023
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds read vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.

  • CVE-2022-43448HigJan 3, 2023
    risk 0.51cvss 7.8epss 0.00

    Out-of-bounds write vulnerability in V-SFT v6.1.7.0 and earlier and TELLUS v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted image file.