CVE-2021-22663

Name of the Vulnerable Software and Affected Versions Cscape versions prior to 9.90 SP3.5

Description The issue is related to the lack of proper validation of user-supplied data when parsing project files, which could lead to an out-of-bounds read. This could allow an attacker to execute code in the context of the current process, potentially impacting the confidentiality, integrity, and availability of protected information.

Recommendations For versions prior to 9.90 SP3.5, update to version 9.90 SP3.5 or later to resolve the issue. As a temporary workaround, consider restricting the parsing of project files from untrusted sources until a patch is applied.