← back
CVE-2023-22660

CVE-2023-22660

CVSS 7 HIGHEPSS 0.5%CWE-122
A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. A specially crafted document can cause a buffer overflow, leading to memory corruption, which can result in arbitrary code execution.To trigger this vulnerability, the victim would need to open a malicious, attacker-created document.
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Ichitaro · Ichitaro

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN79149117/https://talosintelligence.com/vulnerability_reports/TALOS-2023-1722https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1722