VYPR

Vampset

by Schneider Electric

CVEs (3)

  • CVE-2017-7967MedMay 9, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This…

  • CVE-2014-8390Apr 3, 2015
    risk 0.00cvss epss 0.01

    Multiple buffer overflows in Schneider Electric VAMPSET before 2.2.168 allow local users to gain privileges via malformed disturbance-recording data in a (1) CFG or (2) DAT file.

  • CVE-2014-5407Sep 15, 2014
    risk 0.00cvss epss 0.00

    Multiple stack-based buffer overflows in Schneider Electric VAMPSET 2.2.136 and earlier allow local users to cause a denial of service (application halt) via a malformed (1) setting file or (2) disturbance recording file.