Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for kv_studio by keyence

    CVE-2024-29219 (GCVE-0-2024-29219)

    Vulnerability from nvd – Published: 2024-04-15 10:41 – Updated: 2025-09-19 17:21
    VLAI
    Summary
    Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    KEYENCE CORPORATION KV STUDIO Affected: Ver.11.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION KV REPLAY VIEWER Affected: Ver.2.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION VT5-WX15/WX12 Affected: Ver.6.02 and earlier
    Create a notification for this product.
    keyence kv_replay_viewer Affected: 0 , ≤ 2.64 (custom)
        cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*
    Create a notification for this product.
    keyence kv_studio Affected: 0 , ≤ 11.64 (custom)
        cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_replay_viewer",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "2.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_studio",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "11.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-29219",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-16T16:04:52.454295Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-19T17:21:43.118Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T01:10:54.602Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/kv_vulnerability240329_en"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU95439120/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.11.64 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.2.64 and earlier"
                }
              ]
            },
            {
              "product": "VT5-WX15/WX12",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.6.02 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "Out-of-bounds read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-25T03:59:23.777Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/kv_vulnerability240924_en"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU95439120/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-29219",
        "datePublished": "2024-04-15T10:41:33.292Z",
        "dateReserved": "2024-03-19T02:07:19.158Z",
        "dateUpdated": "2025-09-19T17:21:43.118Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-29218 (GCVE-0-2024-29218)

    Vulnerability from nvd – Published: 2024-04-15 10:37 – Updated: 2024-09-25 03:52
    VLAI
    Summary
    Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier, KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    KEYENCE CORPORATION KV STUDIO Affected: Ver.11.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION KV REPLAY VIEWER Affected: Ver.2.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION VT5-WX15/WX12 Affected: Ver.6.02 and earlier
    Create a notification for this product.
    keyence kv_replay_viewer Affected: 0 , ≤ 2.64 (custom)
        cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*
    Create a notification for this product.
    keyence kv_studio Affected: 0 , ≤ 11.64 (custom)
        cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_replay_viewer",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "2.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_studio",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "11.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-29218",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-15T18:21:17.992855Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-16T16:08:16.229Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T01:10:55.392Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/kv_vulnerability240329_en"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU95439120/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.11.64 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.2.64 and earlier"
                }
              ]
            },
            {
              "product": "VT5-WX15/WX12",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.6.02 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier, KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds write",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-25T03:52:10.512Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/kv_vulnerability240924_en"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU95439120/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-29218",
        "datePublished": "2024-04-15T10:37:59.927Z",
        "dateReserved": "2024-03-19T02:07:19.158Z",
        "dateUpdated": "2024-09-25T03:52:10.512Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-42138 (GCVE-0-2023-42138)

    Vulnerability from nvd – Published: 2023-10-11 08:53 – Updated: 2024-09-18 15:56
    VLAI
    Summary
    Out-of-bounds read vulnerability exists in KV STUDIO Ver. 11.62 and earlier and KV REPLAY VIEWER Ver. 2.62 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user of KV STUDIO PLAYER open a specially crafted file.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Out-of-bounds read
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T19:16:50.569Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/vulnerability231001"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU94752076/index.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-42138",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-18T15:56:37.843128Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-18T15:56:54.316Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 11.62 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.62 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds read vulnerability exists in KV STUDIO Ver. 11.62 and earlier and KV REPLAY VIEWER Ver. 2.62 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user of KV STUDIO PLAYER open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Out-of-bounds read",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-11T08:53:24.872Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/vulnerability231001"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU94752076/index.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2023-42138",
        "datePublished": "2023-10-11T08:53:24.872Z",
        "dateReserved": "2023-09-08T02:20:58.383Z",
        "dateUpdated": "2024-09-18T15:56:54.316Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-29219 (GCVE-0-2024-29219)

    Vulnerability from cvelistv5 – Published: 2024-04-15 10:41 – Updated: 2025-09-19 17:21
    VLAI
    Summary
    Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    KEYENCE CORPORATION KV STUDIO Affected: Ver.11.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION KV REPLAY VIEWER Affected: Ver.2.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION VT5-WX15/WX12 Affected: Ver.6.02 and earlier
    Create a notification for this product.
    keyence kv_replay_viewer Affected: 0 , ≤ 2.64 (custom)
        cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*
    Create a notification for this product.
    keyence kv_studio Affected: 0 , ≤ 11.64 (custom)
        cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_replay_viewer",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "2.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_studio",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "11.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-29219",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-16T16:04:52.454295Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-09-19T17:21:43.118Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T01:10:54.602Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/kv_vulnerability240329_en"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU95439120/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.11.64 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.2.64 and earlier"
                }
              ]
            },
            {
              "product": "VT5-WX15/WX12",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.6.02 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds read vulnerability exists in KV STUDIO Ver.11.64 and earlier and KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-125",
                  "description": "Out-of-bounds read",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-25T03:59:23.777Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/kv_vulnerability240924_en"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU95439120/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-29219",
        "datePublished": "2024-04-15T10:41:33.292Z",
        "dateReserved": "2024-03-19T02:07:19.158Z",
        "dateUpdated": "2025-09-19T17:21:43.118Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-29218 (GCVE-0-2024-29218)

    Vulnerability from cvelistv5 – Published: 2024-04-15 10:37 – Updated: 2024-09-25 03:52
    VLAI
    Summary
    Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier, KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    KEYENCE CORPORATION KV STUDIO Affected: Ver.11.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION KV REPLAY VIEWER Affected: Ver.2.64 and earlier
    Create a notification for this product.
    KEYENCE CORPORATION VT5-WX15/WX12 Affected: Ver.6.02 and earlier
    Create a notification for this product.
    keyence kv_replay_viewer Affected: 0 , ≤ 2.64 (custom)
        cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*
    Create a notification for this product.
    keyence kv_studio Affected: 0 , ≤ 11.64 (custom)
        cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_replay_viewer:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_replay_viewer",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "2.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:keyence:kv_studio:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "kv_studio",
                "vendor": "keyence",
                "versions": [
                  {
                    "lessThanOrEqual": "11.64",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "NETWORK",
                  "availabilityImpact": "HIGH",
                  "baseScore": 8.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "NONE",
                  "scope": "UNCHANGED",
                  "userInteraction": "REQUIRED",
                  "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-29218",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-15T18:21:17.992855Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-787",
                    "description": "CWE-787 Out-of-bounds Write",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-16T16:08:16.229Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T01:10:55.392Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/kv_vulnerability240329_en"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU95439120/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.11.64 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.2.64 and earlier"
                }
              ]
            },
            {
              "product": "VT5-WX15/WX12",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver.6.02 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds write vulnerability exists in KV STUDIO Ver.11.64 and earlier, KV REPLAY VIEWER Ver.2.64 and earlier, and VT5-WX15/WX12 Ver.6.02 and earlier, which may lead to information disclosure or arbitrary code execution by having a user of the affected product open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds write",
                  "lang": "en-US",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-25T03:52:10.512Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/kv_vulnerability240924_en"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU95439120/"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2024-29218",
        "datePublished": "2024-04-15T10:37:59.927Z",
        "dateReserved": "2024-03-19T02:07:19.158Z",
        "dateUpdated": "2024-09-25T03:52:10.512Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-42138 (GCVE-0-2023-42138)

    Vulnerability from cvelistv5 – Published: 2023-10-11 08:53 – Updated: 2024-09-18 15:56
    VLAI
    Summary
    Out-of-bounds read vulnerability exists in KV STUDIO Ver. 11.62 and earlier and KV REPLAY VIEWER Ver. 2.62 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user of KV STUDIO PLAYER open a specially crafted file.
    Severity
    No CVSS data available.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Out-of-bounds read
    Assigner
    Impacted products
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T19:16:50.569Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.keyence.com/vulnerability231001"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://jvn.jp/en/vu/JVNVU94752076/index.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-42138",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-18T15:56:37.843128Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-18T15:56:54.316Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "KV STUDIO",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 11.62 and earlier"
                }
              ]
            },
            {
              "product": "KV REPLAY VIEWER",
              "vendor": "KEYENCE CORPORATION",
              "versions": [
                {
                  "status": "affected",
                  "version": "Ver. 2.62 and earlier"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Out-of-bounds read vulnerability exists in KV STUDIO Ver. 11.62 and earlier and KV REPLAY VIEWER Ver. 2.62 and earlier. If this vulnerability is exploited, information may be disclosed or arbitrary code may be executed by having a user of KV STUDIO PLAYER open a specially crafted file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Out-of-bounds read",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-11T08:53:24.872Z",
            "orgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
            "shortName": "jpcert"
          },
          "references": [
            {
              "url": "https://www.keyence.com/vulnerability231001"
            },
            {
              "url": "https://jvn.jp/en/vu/JVNVU94752076/index.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "ede6fdc4-6654-4307-a26d-3331c018e2ce",
        "assignerShortName": "jpcert",
        "cveId": "CVE-2023-42138",
        "datePublished": "2023-10-11T08:53:24.872Z",
        "dateReserved": "2023-09-08T02:20:58.383Z",
        "dateUpdated": "2024-09-18T15:56:54.316Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }