Out-of-Bounds Write Vulnerability in Tecnomatix RobotExpert (ZDI-CAN-12608)

Out-of-Bounds Write Vulnerability in Tecnomatix RobotExpert (ZDI-CAN-12608)

CVE-2021-25670 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A vulnerability has been identified in Tecnomatix RobotExpert (All versions < V16.1). Affected applications lack proper validation of user-supplied data when parsing CELL files. This could result in an out of bounds write past the end of an allocated structure. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-12608)

Learn more about our Cis Benchmark Audit For Robot Operating System.