Primary

Context

Horner Automation Cscape Out-of-Bounds Read Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

An out-of-bounds read vulnerability has been identified in Horner Automation Cscape version 10.0 (10.0.415.2) SP1. This vulnerability could allow an attacker to disclose information and execute arbitrary code on affected installations of Cscape.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure and arbitrary code execution on the affected system.

Remediation

Horner Automation has released Cscape version 10.1 SP1, which is available for download. For more information, see Horner Automation's release notes.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Horner Automation Cscape Out-of-Bounds Read Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

Horner Automation Cscape

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating