Multiple vulnerabilities in Fuji Electric V-SFT


Multiple vulnerabilities listed below exist in the simulator module contained in the graphic editor "V-SFT" provided by FUJI ELECTRIC CO., LTD.

* Out-of-bounds Write (CWE-787) - CVE-2022-30538
* Out-of-bounds Read (CWE-125) - CVE-2022-30546
* Heap-based Buffer Overflow (CWE-122) - CVE-2022-26302
* Use After Free (CWE-416) - CVE-2022-29522
* Access of Uninitialized Pointer (CWE-824) - CVE-2022-29522

Michael Heinzl reported these vulnerabilities to JPCERT/CC.
JPCERT/CC coordinated with the developer.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 7.8 (High) [Other]
  • Attack Vector: Local
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: Required
  • Scope: Unchanged
  • Confidentiality Impact: High
  • Integrity Impact: High
  • Availability Impact: High
Affected Products

Fuji Electric Co., Ltd.
  • V-SFT versions prior to v6.1.6.0


Exploiting these vulnerabilities by opening a specially crafted image file may result in the following impacts.

* Information disclosure
* Arbitrary code execution

[Update the software]
Update the software to the latest version according to the information provided by the developer.
The developer released v6.1.6.0 which contains fixes for these vulnerabilities.
Refer to "Improvement information 2240H36" provided by the developer for more information.
Vendor Information

Fuji Electric Co., Ltd.
CWE (What is CWE?)

  1. Heap-based Buffer Overflow(CWE-122) [Other]
  2. Out-of-bounds Read(CWE-125) [Other]
  3. Use After Free(CWE-416) [Other]
  4. Out-of-bounds Write(CWE-787) [Other]
  5. Access of Uninitialized Pointer(CWE-824) [Other]
CVE (What is CVE?)

  1. CVE-2022-30538
  2. CVE-2022-30546
  3. CVE-2022-26302
  4. CVE-2022-29522
  5. CVE-2022-29925

  1. JVN : JVNVU#99188133
Revision History

  • [2022/05/27]
      Web page was published