Severity by source
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Local vector and required user interaction to process malicious input, no privileges needed, and a stack overflow yielding full code execution give C/I/A:H with unchanged scope.
Primary rating from Vendor (hq).
CVSS VectorVendor: hq
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
1DescriptionCVE.org
The application contains a stack-based buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code.
AnalysisAI
Local arbitrary code execution affects an unspecified industrial control system (ICS) product reported through CISA ICS-CERT (advisory ICSA-26-188-06). A stack-based buffer overflow (CWE-121) lets an attacker who can supply crafted input trigger memory corruption and run arbitrary code once a local user interacts with the malicious data, fully compromising confidentiality, integrity, and availability. …
Unlock full vulnerability intelligence
- Risk assessment & exploitation conditions
- Attack chain visualization
- Remediation with exact patch versions
- Threat intelligence from 22 sources
- Personal watchlist & email alerts
Free forever · No credit card required
Attack ChainAIDerived
Hypothetical attack flow derived from CVE metadata
Vulnerability AssessmentAI
| Exploitation | Exploitation requires local delivery of attacker-controlled input to the vulnerable ICS application (AV:L) and active interaction by a legitimate user (UI:A) - for example an operator opening, importing, or processing a crafted project/configuration/device data file. … Additional conditions and limiting factors are described in the full assessment. |
| Risk Assessment | The CVSS 4.0 base score is 8.4 (High) with vector AV:L/AC:L/AT:N/PR:N/UI:A and full VC/VI/VA:H impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in. |
| Exploit Scenario | An attacker crafts a malicious project file, configuration file, or device response containing an oversized field and delivers it to an engineer (via email, shared drive, or a rogue device on the network). When the operator opens or imports the data in the vulnerable ICS application, the stack buffer overflows and the attacker's code runs in the user's context on the engineering workstation. … |
| Remediation | No vendor-released patch version is identified in the provided data; consult CISA ICS advisory ICSA-26-188-06 (https://www.cisa.gov/news-events/ics-advisories/icsa-26-188-06) for the vendor's fixed version and official guidance, and apply the vendor update as the primary fix once identified. … Detailed patch versions, workarounds, and compensating controls in full report. |
Recommended ActionAI
Within 24 hours: Contact your ICS vendor and product teams to determine if this vulnerability affects any deployed systems; enable enhanced logging on any confirmed affected systems. …
Sign in for detailed remediation steps and compensating controls.
Threat intelligence, references, and detailed analysis are available after sign-in.
Same weakness CWE-121 – Stack-based Buffer Overflow
View allSame technique Buffer Overflow
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-42122
GHSA-h3p7-vr3q-c8g3