NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-12897

Summary	Horner Automation Cscape versions prior to 10.2 SP3 are vulnerable to an Out-of-Bounds Read vulnerability through parsing CSP files. Successful exploitation of this vulnerability could allow an attacker to disclose information and execute arbitrary code.
Publication Date	June 26, 2026, 4:16 a.m.
Registration Date	June 27, 2026, 4:30 a.m.
Last Update	June 26, 2026, 5:16 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.cisa.gov/news-events/ics-advisories/icsa-26-176-03	ics-cert@hq.dhs.gov

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-125	境界外読み取り	https://cwe.mitre.org/data/definitions/125.html