Primary

Context

LS Electric GMWin 4 Out-of-Bounds Read Vulnerability

Vulnerability

An out-of-bounds read vulnerability has been identified in LS Electric GMWin 4 version 4.18, a programming software tool. This vulnerability arises from improper validation of user-supplied data in the parsing of PRJ files, leading to potential memory corruption issues. Exploitation of this vulnerability could allow for reading past the end of allocated data structures, creating risks for information disclosure or arbitrary code execution.

Impact

Exploitation of this vulnerability could result in memory corruption, allowing for reading beyond allocated data boundaries, which could be leveraged for information disclosure or arbitrary code execution.

Remediation

LS Electric GMWin 4 has been discontinued and is no longer available for service. Users are recommended to switch to the XGT series as a replacement. For more information, contact LS Electric.

Added: Jun 17, 2025, 7:18 PM

Updated: Jun 17, 2025, 9:55 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.6

exploitability

7.4

remediation

0.0

relevance

0.2

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

LS Electric GMWin 4 Out-of-Bounds Read Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating