{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5495", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2026-04-03T14:34:43.888Z", "datePublished": "2026-04-11T00:13:26.901Z", "dateUpdated": "2026-04-13T16:17:32.512Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-04-11T00:13:26.901Z"}, "title": "Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability", "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the processing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25720."}], "affected": [{"vendor": "Labcenter Electronics", "product": "Proteus", "versions": [{"version": "8.17 SP5", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-787", "description": "CWE-787: Out-of-bounds Write", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-257/", "name": "ZDI-26-257", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-04-03T14:34:43.926Z", "datePublic": "2026-04-06T14:15:53.292Z", "source": {"lang": "en", "value": "Andrea Micalizzi aka rgod (@rgod777)"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-13T16:17:17.862658Z", "id": "CVE-2026-5495", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T16:17:32.512Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-5495", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-13T16:17:17.862658Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T16:17:24.242Z"}}], "cna": {"title": "Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability", "source": {"lang": "en", "value": "Andrea Micalizzi aka rgod (@rgod777)"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "Labcenter Electronics", "product": "Proteus", "versions": [{"status": "affected", "version": "8.17 SP5"}], "defaultStatus": "unknown"}], "datePublic": "2026-04-06T14:15:53.292Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-257/", "name": "ZDI-26-257", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-04-03T14:34:43.926Z", "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the processing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25720."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-787", "description": "CWE-787: Out-of-bounds Write"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-04-11T00:13:26.901Z"}}}, "cveMetadata": {"cveId": "CVE-2026-5495", "state": "PUBLISHED", "dateUpdated": "2026-04-13T16:17:32.512Z", "dateReserved": "2026-04-03T14:34:43.888Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2026-04-11T00:13:26.901Z", "assignerShortName": "zdi"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:labcenter:proteus:8.17:sp5:*:*:*:*:*:*", "matchCriteriaId": "02C6A9A8-9638-4E28-B3D4-5E16A9C36AB6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the processing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25720."}], "id": "CVE-2026-5495", "lastModified": "2026-04-27T17:48:16.460", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2026-04-11T01:16:18.697", "references": [{"source": "zdi-disclosures@trendmicro.com", "tags": ["Third Party Advisory"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-26-257/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "8.17 SP5"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Proteus", "source": "cna", "vendor": "Labcenter Electronics"}, "product": "proteus", "vendor": "labcenter_electronics"}], "analysis": {"en": {"generated_at": "2026-04-11T02:35:19.872403+00:00", "value": {"mitigation_remediation": ["Check Labcenter Electronics website for any patches or updates addressing the PDSPRJ file handling flaw.", "Apply any available patch or updated version as soon as it becomes available.", "If a patch is not yet released, restrict opening of PDSPRJ files from untrusted sources or disable the file type integration temporarily.", "Monitor security advisories from proprietary vendors and third\u2011party security feeds for further information."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the Proteus software distributed by Labcenter Electronics. No specific product versions are enumerated in the available data.\n", "description_and_impact": "A buffer overflow occurs when the Proteus program processes improperly crafted PDSPRJ files. The flaw arises from missing validation of user data, leading to an out\u2011of\u2011bounds write that allows an attacker to run code in the context of the current process. This weakness aligns with CWE\u2011787.\n", "risk_and_exploitability": "The CVSS score of 7.8 indicates a high severity, and although an EPSS score is not available, the lack of a KEV listing suggests it has not yet been observed in the wild. The requirement for a user to open a malicious file or visit a malicious page means that exploitation requires some level of user interaction.\n"}}}}, "created": "2026-04-13T12:42:22.319889+00:00", "updated": "2026-04-13T12:57:08.906224+00:00", "vendors": ["labcenter_electronics", "labcenter_electronics$PRODUCT$proteus"]}