CVE-2022-40984: Buffer Overflow
First published: Mon Oct 24 2022(Updated: )
Stack-based buffer overflow in WTViewerE series WTViewerE 761941 from 1.31 to 1.61 and WTViewerEfree from 1.01 to 1.52 allows an attacker to cause the product to crash by processing a long file name.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Yokogawa Wtviewere 761941 | >=1.31<1.62 | |
| Yokogawa Wtviewerefree | >=1.01<1.53 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this stack-based buffer overflow?
The vulnerability ID for this stack-based buffer overflow is CVE-2022-40984.
What is the severity rating of CVE-2022-40984?
The severity rating of CVE-2022-40984 is critical.
Which software versions are affected by CVE-2022-40984?
Versions 1.31 to 1.61 of the WTViewerE series WTViewerE 761941 and versions 1.01 to 1.52 of WTViewerEfree are affected by CVE-2022-40984.
How can an attacker exploit CVE-2022-40984?
An attacker can exploit CVE-2022-40984 by processing a long file name, causing the product to crash.
Where can I find more information about CVE-2022-40984?
You can find more information about CVE-2022-40984 at the following references: [link1](https://cdn.aff.yokogawa.com/8/756/details/Vulnerability_in_YOKOGAWA_application_software_WTViewerE_r0_e.pdf) and [link2](https://jvn.jp/en/vu/JVNVU99955870/index.html).
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/yokogawa
- canonical/yokogawa wtviewere 761941
- version/yokogawa wtviewere 761941/1.31
- canonical/yokogawa wtviewerefree
- version/yokogawa wtviewerefree/1.01