IGSS Definition (Def.exe) V15.0.0.21140 and Prior - CWE-763: Release of Invalid Pointer or Reference Vulnerability

IGSS Definition (Def.exe) V15.0.0.21140 and Prior - CWE-763: Release of Invalid Pointer or Reference Vulnerability

CVE-2021-22760 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A CWE-763: Release of invalid pointer or reference vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in loss of data or remote code execution due to missing checks of user-supplied input data, when a malicious CGF file is imported to IGSS Definition.

Learn more about our User Device Pen Test.