GCVE - cpe:2.3:a:fujielectric:v-server:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:fujielectric:v-server:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Fujielectric (`4b88a999-6357-5bd2-b4a2-064bfc281e2b`)
Product	V Server (`a3d43f49-862f-5242-9b0f-8c46545ec77c`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-38658`	vulnerable	2026-06-03 14:56:19.248501	Details available There is an Out-of-bounds read vulnerability in V-Server (v4.0.19.0 and earlier) and V-Server Lite (v4.0.19.0 and earlier). If a user opens a specially crafted file, information may be disclosed and/or arbitrary code may be executed. Published: 2024-11-28T02:11:21.840Z Updated: 2024-11-29T20:46:17.613Z Open on db.gcve.eu Reference links https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php https://jvn.jp/en/vu/JVNVU97531313/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-47908`	vulnerable	2026-06-03 14:48:27.864405	Details available Stack-based buffer overflow vulnerability in V-Server v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted project file. Published: 2023-01-03T00:00:00.000Z Updated: 2025-04-10T15:48:28.275Z Open on db.gcve.eu Reference links https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php https://jvn.jp/en/vu/JVNVU92811888/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-47317`	vulnerable	2026-06-03 14:48:27.087040	Details available Out-of-bounds write vulnerability in V-Server v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted project file. Published: 2023-01-03T00:00:00.000Z Updated: 2025-04-10T14:59:28.992Z Open on db.gcve.eu Reference links https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php https://jvn.jp/en/vu/JVNVU92811888/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-41645`	vulnerable	2026-06-03 14:48:05.693343	Details available Out-of-bounds read vulnerability in V-Server v4.0.12.0 and earlier allows a local attacker to obtain the information and/or execute arbitrary code by having a user to open a specially crafted project file. Published: 2023-01-03T00:00:00.000Z Updated: 2025-04-10T17:05:49.343Z Open on db.gcve.eu Reference links https://monitouch.fujielectric.com/site/download-e/03tellus_inf/index.php https://jvn.jp/en/vu/JVNVU92811888/index.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-3947`	vulnerable	2026-06-03 14:40:27.959980	Details available Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain access to the database server. Published: 2019-06-12T14:06:57.000Z Updated: 2024-08-04T19:26:27.750Z Open on db.gcve.eu Reference links https://www.tenable.com/security/research/tra-2019-27 http://www.securityfocus.com/bid/108740	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-3946`	vulnerable	2026-06-03 14:40:27.959616	Details available Fuji Electric V-Server before 6.0.33.0 is vulnerable to denial of service via a crafted UDP message sent to port 8005. An unauthenticated, remote attacker can crash vserver.exe due to an integer overflow in the UDP message handling logic. Published: 2019-06-12T14:06:52.000Z Updated: 2024-08-04T19:26:27.278Z Open on db.gcve.eu Reference links https://www.tenable.com/security/research/tra-2019-27 http://www.securityfocus.com/bid/108740	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-18240`	vulnerable	2026-06-03 14:39:57.045206	Details available In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer overflows have been identified, which may allow an attacker to remotely execute arbitrary code. Published: 2019-11-13T22:21:01.000Z Updated: 2024-08-05T01:47:13.942Z Open on db.gcve.eu Reference links https://www.us-cert.gov/ics/advisories/icsa-19-311-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2017-9639`	vulnerable	2026-06-03 14:37:41.988296	Details available An issue was discovered in Fuji Electric V-Server Version 3.3.22.0 and prior. A memory corruption vulnerability has been identified (aka improper restriction of operations within the bounds of a memory buffer), which may allow remote code execution. Published: 2017-07-17T19:00:00.000Z Updated: 2024-08-05T17:11:02.361Z Open on db.gcve.eu Reference links https://ics-cert.us-cert.gov/advisories/ICSA-17-192-02 http://www.securityfocus.com/bid/99544	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.