← Back

CVE-2023-37227

nvd nist
Published: Sep 10, 2024Modified: May 29, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Loftware Spectrum before 4.6 HF13 Deserializes Untrusted Data.

Affected (13)

Products: Loftware: Spectrum
Loftware
1 product
Spectrum
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Loftware
Spectrum
Before 4.6
Spectrum
Version 4.6
Spectrum
Version 4.6 feature_pack6
Spectrum
Version 4.6 hotfix10
Spectrum
Version 4.6 hotfix12
Spectrum
Version 4.6 hotfix1
Spectrum
Version 4.6 hotfix2
Spectrum
Version 4.6 hotfix3
Spectrum
Version 4.6 hotfix4
Spectrum
Version 4.6 hotfix5
Spectrum
Version 4.6 hotfix7
Spectrum
Version 4.6 hotfix8
Spectrum
Version 4.6 hotfix9

Related CWEs

CWE-502
Deserialization of Untrusted Data
The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

References (3)

Source: cve@mitre.org
Not Applicable
Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
Release Notes

Timeline

No history available yet.