Vulnerability in Ucancode.net Software E-xd++ Visualization Enterprise Suite
CVE-2017-20211
UCanCode E-XD++ Visualization Enterprise Suite contains an untrusted pointer dereference vulnerability via the TKDRAWCAD.TKDrawCADCtrl.1 ActiveX control. This is because it exposes a RotateShape method that dereferences a user-supplied poi…
EPSS: 0.006 (46.4th percentile) — read the EPSS interpretation.
Affected products
Weakness classification (CWE)
References
- disclosure@vulncheck.com (technical-description)
- disclosure@vulncheck.com (product)
- disclosure@vulncheck.com (third-party-advisory)