CVE-2011-10015 in Studioinfo

Zusammenfassung

von MITRE • 14.08.2025

Cytel Studio version 9.0 and earlier is vulnerable to a stack-based buffer overflow triggered by parsing a malformed .CY3 file. The vulnerability occurs when the application copies user-controlled strings into a fixed-size stack buffer (256 bytes) without proper bounds checking. Exploitation allows arbitrary code execution when the crafted file is opened.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulnCheck

Reservieren

12.08.2025

Veröffentlichung

14.08.2025

Moderieren

akzeptiert

Eintrag

VDB-320058

CPE

bereit

CWE

CWE-121 (bestätigt)

Exploit

Download

CVSS

6.3 (VulDB)

EPSS

0.04186

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-10015
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-10015
CVE Details	https://www.cvedetails.com/cve/CVE-2011-10015/

◂ Zurück Übersicht Weiter ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!