Vulnerability Description
In Horner Automation Cscape 9.90 and prior, an improper input validation vulnerability has been identified that may be exploited by processing files lacking user input validation. This may allow an attacker to access information and remotely execute arbitrary code.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hornerautomation | Cscape | <= 9.90 |
Related Weaknesses (CWE)
References
- https://www.us-cert.gov/ics/advisories/icsa-19-290-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-19-902/Third Party AdvisoryVDB Entry
- https://www.us-cert.gov/ics/advisories/icsa-19-290-02MitigationThird Party AdvisoryUS Government Resource
- https://www.zerodayinitiative.com/advisories/ZDI-19-902/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2019-13541?
CVE-2019-13541 is a vulnerability with a CVSS score of 7.8 (HIGH). In Horner Automation Cscape 9.90 and prior, an improper input validation vulnerability has been identified that may be exploited by processing files lacking user input validation. This may allow an at...
How severe is CVE-2019-13541?
CVE-2019-13541 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-13541?
Check the references section above for vendor advisories and patch information. Affected products include: Hornerautomation Cscape.