Vulnerability Description
In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files lacking user input validation before copying data from project files onto the stack and may allow an attacker to remotely execute arbitrary code.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Deltaww | Tpeditor | <= 1.90 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105682Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-284-03Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/105682Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-18-284-03Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2018-17929?
CVE-2018-17929 is a vulnerability with a CVSS score of 7.8 (HIGH). In Delta Industrial Automation TPEditor, TPEditor Versions 1.90 and prior, multiple stack-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files lacking u...
How severe is CVE-2018-17929?
CVE-2018-17929 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-17929?
Check the references section above for vendor advisories and patch information. Affected products include: Deltaww Tpeditor.