2 matches found
CVE-2018-19005
Cscape, Version 9.80.75.3 SP3 and prior. An improper input validation vulnerability has been identified that may be exploited by processing specially crafted POC files lacking user input validation. This may allow an attacker to read confidential information and remotely execute arbitrary code...
CVE-2018-19005
CVE-2018-19005 concerns Horner Automation Cscape CSP file parsing vulnerabilities. The connected advisories (ZDI-18-1434/1435/1436/1437/1438/1439/1441/1442 and related entries) describe multiple remote code execution flaws stemming from parsing CSP files, caused by lack of proper validation of us...