{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-5496", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2026-04-03T14:34:56.642Z", "datePublished": "2026-04-11T00:13:14.901Z", "dateUpdated": "2026-04-13T18:25:22.216Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-04-11T00:13:14.901Z"}, "title": "Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability", "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25717."}], "affected": [{"vendor": "Labcenter Electronics", "product": "Proteus", "versions": [{"version": "8.17 SP5", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-843", "description": "CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-254/", "name": "ZDI-26-254", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-04-03T14:34:56.682Z", "datePublic": "2026-04-06T14:14:16.337Z", "source": {"lang": "en", "value": "Andrea Micalizzi aka rgod (@rgod777)"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-13T18:25:10.253866Z", "id": "CVE-2026-5496", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T18:25:22.216Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-5496", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-13T18:25:10.253866Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T18:25:17.919Z"}}], "cna": {"title": "Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability", "source": {"lang": "en", "value": "Andrea Micalizzi aka rgod (@rgod777)"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "Labcenter Electronics", "product": "Proteus", "versions": [{"status": "affected", "version": "8.17 SP5"}], "defaultStatus": "unknown"}], "datePublic": "2026-04-06T14:14:16.337Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-254/", "name": "ZDI-26-254", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-04-03T14:34:56.682Z", "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25717."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-843", "description": "CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-04-11T00:13:14.901Z"}}}, "cveMetadata": {"cveId": "CVE-2026-5496", "state": "PUBLISHED", "dateUpdated": "2026-04-13T18:25:22.216Z", "dateReserved": "2026-04-03T14:34:56.642Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2026-04-11T00:13:14.901Z", "assignerShortName": "zdi"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:labcenter:proteus:8.17:sp5:*:*:*:*:*:*", "matchCriteriaId": "02C6A9A8-9638-4E28-B3D4-5E16A9C36AB6", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Labcenter Electronics Proteus PDSPRJ File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Labcenter Electronics Proteus. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.\n\nThe specific flaw exists within the parsing of PDSPRJ files. The issue results from the lack of proper validation of user-supplied data, which can result in a type confusion condition. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25717."}], "id": "CVE-2026-5496", "lastModified": "2026-04-27T17:48:20.870", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2026-04-11T01:16:18.830", "references": [{"source": "zdi-disclosures@trendmicro.com", "tags": ["Third Party Advisory"], "url": "https://www.zerodayinitiative.com/advisories/ZDI-26-254/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-843"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "8.17 SP5"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Proteus", "source": "cna", "vendor": "Labcenter Electronics"}, "product": "proteus", "vendor": "labcenter_electronics"}], "analysis": {"en": {"generated_at": "2026-04-11T03:35:46.940773+00:00", "value": {"mitigation_remediation": ["Apply the vendor's security patch for Proteus as soon as it becomes available.", "Do not open or import PDSPRJ files from untrusted or unknown sources until a patch is applied.", "Limit standard users' ability to run Proteus by assigning administrative approval or restricting executable permissions.", "Monitor official Labcenter Electronics advisory channels for updates and validate that the patch resolves the issue."], "summary": {"action": "Apply Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "All versions of Labcenter Electronics Proteus that parse PDSPRJ files are affected. No specific release range is provided, so every publicly available version that supports this file format should be regarded as vulnerable until a vendor update is issued.", "description_and_impact": "The flaw lies in Proteus' handling of PDSPRJ project files. When data supplied by a user is not validated, a type\u2011confusion condition can be triggered, allowing an attacker to supply a crafted file that the program interprets as a different data type. This leads to execution of arbitrary code in the process context of Proteus. The vulnerability is only exploitable when the user opens or otherwise processes a malicious PDSPRJ file.", "risk_and_exploitability": "The CVSS score of 7.8 denotes high severity. The attack requires user interaction, i.e., the victim must open a malicious PDSPRJ file or visit a page that triggers parsing. EPSS data is not provided, and the vulnerability is not listed in the CISA KEV catalog. Nevertheless, the combination of high severity and the need for user cooperation means that environments where users routinely import third\u2011party project files are at risk of arbitrary code execution."}}}}, "created": "2026-04-13T12:42:25.305094+00:00", "updated": "2026-04-13T12:57:12.124774+00:00", "vendors": ["labcenter_electronics", "labcenter_electronics$PRODUCT$proteus"]}