### [CVE-2021-33015](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33015)
![](https://img.shields.io/static/v1?label=Product&message=Cscape&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=All%20Versions%20prior%20to%209.90%20SP5%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=ACCESS%20OF%20UNINITIALIZED%20POINTER%20CWE-824&color=brightgreen)

### Description

Cscape (All Versions prior to 9.90 SP5) lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds write via an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/n0-traces/cve_monitor