cvedb.io
CVE-2018-19005
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2018-12-20T21:29:00.883 · Last modified 2026-06-17T01:48:37.457

Summary

Cscape, Version 9.80.75.3 SP3 and prior. An improper input validation vulnerability has been identified that may be exploited by processing specially crafted POC files lacking user input validation. This may allow an attacker to read confidential information and remotely execute arbitrary code.

Affected products

hornerautomation — cscape

Does this affect you?

Add your gear to cvedb and we'll alert you only when hornerautomation ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.