CVE-2023-40222 in Cobalt
要約
〜によって MITRE • 2025年02月05日
In Ashlar-Vellum Cobalt versions prior to v12 SP2 Build (1204.200), the affected application lacks proper validation of user-supplied data when parsing CO files. This could lead to a heap-based buffer overflow. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.