Alpha5 Smart Loader Firmware
CVE-2022-21214
HIGH
Severity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code execution.
AnalysisAI
The affected product is vulnerable to a heap-based buffer overflow, which may lead to code execution. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity.
Technical ContextAI
This vulnerability is classified under CWE-122. The affected product is vulnerable to a heap-based buffer overflow, which may lead to code execution. Affected products include: Fujielectric Alpha5 Smart Loader Firmware.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Alpha5 Smart Loader Firmware
View allFuji Electric Alpha5 Smart Loader Versions 3.7 and prior. Rated critical severity (CVSS 9.8), this vulnerability is remo
The affected product is vulnerable to an out-of-bounds read, which may result in code execution. Rated high severity (CV
The affected product is vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary co
Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. Rated high sever
The affected product is vulnerable to an out-of-bounds read, which may result in disclosure of sensitive information. Ra
The affected product is vulnerable due to an invalid pointer initialization, which may lead to information disclosure. R
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. Rated medium severity (CVSS 5.3), this vulnerability is remote
Same weakness CWE-122 – Heap-based Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today