CVE-2021-22760

Name of the Vulnerable Software and Affected Versions IGSS Definition (Def.exe) versions 15.0.0.21140 and prior

Description A Release of invalid pointer or reference issue exists due to missing checks of user-supplied input data. This could result in loss of data or remote code execution when a malicious CGF file is imported to IGSS Definition.

Recommendations For versions 15.0.0.21140 and prior, update to a version that includes the necessary checks for user-supplied input data to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.