CVE-2020-12525

February 9, 2021

M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.

Summary:

M&M Software fdtCONTAINER Component in versions below 3.5.20304.x and between 3.6 and 3.6.20304.x is vulnerable to deserialization of untrusted data in its project storage.

Reference Links(if available):

  • https://cert.vde.com/en-us/advisories/vde-2020-038
  • https://us-cert.cisa.gov/ics/advisories/icsa-21-021-05

  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)

  • You may have missed

    CISA Logo

    CISA: Oracle Releases Quarterly Critical Patch Update Advisory for October 2024

    November 17, 2024
    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    November 17, 2024
    CISA Logo

    CISA: CISA Releases One Industrial Control Systems Advisory

    November 17, 2024
    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    November 17, 2024
    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    November 17, 2024