CVE-2022-40663
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Sep 15, 2022
Updated: Jan 7, 2025
CWE ID 125
Summary
CVE-2022-40663 is a vulnerability affecting NIKON NIS-Elements Viewer 1.2100.1483.0. This issue enables remote attackers to execute arbitrary code on susceptible systems. Exploitation requires user interaction, such as visiting a malicious webpage or opening a manipulated TIF file. The vulnerability lies in the TIF image parsing process, where data can cause a buffer overflow, allowing an attacker to write and execute malicious code in the current process. (Was ZDI-CAN-15697)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Nikon