Severity by source
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Lifecycle Timeline
4DescriptionCVE.org
Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the processing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25720.
AnalysisAI
Out-of-bounds write in Labcenter Electronics Proteus PDSPRJ file parser enables unauthenticated remote code execution when victims open crafted project files. The vulnerability stems from insufficient validation during PDSPRJ file processing, allowing buffer overflow conditions that permit arbitrary code execution with victim's privileges. Exploitation requires user interaction-opening a malicious PDSPRJ file or visiting attacker-controlled web content. CVSS 7.8 (High) reflects local attack vector with no privileges required but mandatory user interaction. No public exploit identified at time of analysis. Affects all versions per available CPE data.
Technical ContextAI
CWE-787 out-of-bounds write triggered during PDSPRJ project file deserialization. Parser writes user-controlled data beyond allocated buffer boundaries without bounds checking. Attack vector (AV:L) indicates local file operations; attacker supplies malicious PDSPRJ payload executed during file parsing routines. Memory corruption enables instruction pointer control for arbitrary code execution.
RemediationAI
No vendor-released patch identified at time of analysis. Until fixes become available, organizations should implement defensive controls: restrict PDSPRJ file sources to trusted repositories only, disable automatic file preview/parsing features, deploy application sandboxing to limit code execution scope, and enforce strict email attachment policies blocking unsolicited PDSPRJ files. Security teams should monitor Zero Day Initiative advisory ZDI-26-257 for vendor coordination updates and patch release notifications at https://www.zerodayinitiative.com/advisories/ZDI-26-257/. Consider prohibiting Proteus usage on systems processing untrusted project files until vendor addresses vulnerability. Deploy endpoint detection rules monitoring abnormal Proteus process behavior including unexpected child process creation or network connections.
An XXE issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6.x through 6.0.15, and 6.1.x an
Out-of-bounds write in Labcenter Electronics Proteus PDSPRJ file parser enables unauthenticated remote code execution wi
Out-of-bounds write during PDSPRJ file parsing in Labcenter Electronics Proteus enables remote code execution when users
Type confusion in Labcenter Electronics Proteus PDSPRJ file parser enables remote code execution when users open malicio
An XML Entity Expansion (XEE) issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6.x throu
Same weakness CWE-787 – Out-of-bounds Write
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2026-21670