Vulnerability Description
In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple out-of-bounds write vulnerabilities may be exploited by processing specially crafted project files lacking user input validation, which may cause the system to write outside the intended buffer area and may allow remote code execution.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Deltaww | Tpeditor | <= 1.90 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105682Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-284-03Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/105682Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-284-03Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-17927?
CVE-2018-17927 is a vulnerability with a CVSS score of 7.8 (HIGH). In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple out-of-bounds write vulnerabilities may be exploited by processing specially crafted project files lacking user inpu...
How severe is CVE-2018-17927?
CVE-2018-17927 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-17927?
Check the references section above for vendor advisories and patch information. Affected products include: Deltaww Tpeditor.