CVE-2021-22710

Name of the Vulnerable Software and Affected Versions Interactive Graphical SCADA System (IGSS) versions 15.0.0.21041 and prior

Description A memory buffer vulnerability exists, which could cause remote code execution when a malicious CGF (Configuration Group File) file is imported to IGSS Definition. This issue is related to improper restriction of operations within the bounds of a memory buffer.

Recommendations For versions 15.0.0.21041 and prior, consider disabling the import of CGF files until a patch is available to prevent remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.