Cscape, 9.80 SP4 and prior. An improper input validation vulnerability may be exploited by processing specially crafted POC files. This may allow an attacker to read confidential information and remotely execute arbitrary code.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/107087 | Third Party Advisory VDB Entry |
https://ics-cert.us-cert.gov/advisories/ICSA-19-050-03 | US Government Resource Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2019-02-28 20:29
Updated : 2024-02-28 16:48
NVD link : CVE-2019-6555
Mitre link : CVE-2019-6555
CVE.ORG link : CVE-2019-6555
JSON object : View
Products Affected
hornerautomation
- cscape
CWE
CWE-20
Improper Input Validation