Lattice Semiconductor ispVM System 18.0.2 XCF File Handling Buffer Overflow

Advisories

severity: high
date: August 13, 2025
Affecting: ispVM System v18.0.2
Affected version range is undefined
CVE: CVE-2012-10057
CVE type: Stack-based Buffer Overflow
CVSS: 8.4
CVSS V4 Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
References: Researcher Disclosure
Metasploit Module
EDB-18947 (Metasploit)
Product Site
Credit: Anonymous person via Secunia