Panasonic FPWIN Pro, all Versions 7.5.1.1 and prior, allows an attacker to craft a project file specifying a URI that causes the XML parser to access the URI and embed the contents, which may allow the attacker to disclose information that is accessible in the context of the user executing software.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NPanasonic Fpwin Pro
APPPanasonic≤ 7.5.1.1
Related vulnerabilities
Stack-based buffer overflow in FPWin Pro version 7.7.0.0 and all previous versions may allow attackers to exec...
Out-of-bouds read vulnerability in FPWin Pro version 7.7.0.0 and all previous versions may allow attackers to ...
FPWIN Pro is vulnerable to an out-of-bounds read vulnerability when a user opens a maliciously crafted project...
Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a denial of service (out-of-bound...
Heap-based buffer overflow in Panasonic FPWIN Pro 5.x through 7.x before 7.130 allows local users to cause a d...