Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2018-10636
HistoryAug 08, 2018 - 12:00 a.m.

CVE-2018-10636

2018-08-0800:00:00
CWE-121
icscert
www.cve.org

9.4 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.7%

JSON

CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54 has multiple stack-based buffer overflow vulnerabilities that could cause the software to crash due to lacking user input validation before copying data from project files onto the stack. Which may allow an attacker to gain remote code execution with administrator privileges if exploited.

CNA Affected

[
  {
    "product": "CNCSoft with ScreenEditor",
    "vendor": "ICS-CERT",
    "versions": [
      {
        "status": "affected",
        "version": "CNCSoft Version 1.00.83 and prior with ScreenEditor Version 1.00.54"
      }
    ]
  }
]

Related

prion 1
cve 1
zdi 10
nvd 1
ics 1
prion
prion
Stack overflow
2018-08-13 21:47:00
cve
cve
CVE-2018-10636
2018-08-13 21:47:59
zdi
zdi
Delta Industrial Automation CNCSoft ScreenEditor DPB File UserVARComment wFont Stack-based Buffer Overflow Remote Code Execution Vulnerability
2018-09-19 00:00:00
Delta Industrial Automation CNCSoft ScreenEditor DPB File UserAlarm wMessage Stack-based Buffer Overflow Remote Code Execution Vulnerability
2018-09-05 00:00:00
Delta Industrial Automation CNCSoft ScreenEditor DPB File wKPFString Stack-based Buffer Overflow Remote Code Execution Vulnerability
2018-09-05 00:00:00
nvd
nvd
CVE-2018-10636
2018-08-13 21:47:59
ics
ics
Delta Electronics CNCSoft and ScreenEditor
2018-09-20 12:00:00

9.4 High

AI Score

Confidence

High

0.01 Low

EPSS

Percentile

83.7%

JSON
Related for CVELIST:CVE-2018-10636
prion1cve1zdi10nvd1ics1