CVE-2022-30549
First published: Thu Jun 16 2022(Updated: )
Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Fujielectric V-server | <=4.0.11.0 | |
| Fujielectric V-server | <=4.0.13.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-30549?
CVE-2022-30549 is an out-of-bounds read vulnerability in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user open a specially crafted image file.
What software is affected by CVE-2022-30549?
Fujielectric V-server v4.0.11.0 and earlier and Fujielectric V-server Lite v4.0.13.0 and earlier are affected by CVE-2022-30549.
What is the severity of CVE-2022-30549?
CVE-2022-30549 has a severity keyword of high and a severity value of 7.8.
How can an attacker exploit CVE-2022-30549?
An attacker can exploit CVE-2022-30549 by having a user open a specially crafted image file, which may allow the attacker to obtain information and/or execute arbitrary code.
Are there any references related to CVE-2022-30549?
Yes, you can find more information about CVE-2022-30549 at the following references: 1) https://jvn.jp/en/vu/JVNVU93134398/index.html, 2) https://monitouch.fujielectric.com/site/download-e/09vsft6_inf/Search.php, and 3) https://monitouch.fujielectric.com/site/download-eu/03tellus_inf/index.php.
- collector/nvd-index
- vendor/fujielectric
- canonical/fujielectric v-server
- version/fujielectric v-server/4.0.11.0
- version/fujielectric v-server/4.0.13.0