CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2019-6555 – Horner Automation Cscape CSP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2019-6555
20 Feb 2019 — Cscape, 9.80 SP4 and prior. An improper input validation vulnerability may be exploited by processing specially crafted POC files. This may allow an attacker to read confidential information and remotely execute arbitrary code. Cscape en versiones 9.80 SP4 y anteriores. Una vulnerabilidad de validación de entradas incorrecta podría explotarse procesando archivos POC especialmente manipulados. • http://www.securityfocus.com/bid/107087 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-19005 – Horner Automation Cscape CSP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-19005
20 Dec 2018 — Cscape, Version 9.80.75.3 SP3 and prior. An improper input validation vulnerability has been identified that may be exploited by processing specially crafted POC files lacking user input validation. This may allow an attacker to read confidential information and remotely execute arbitrary code. Cscape, en versiones 9.80.75.3 SP3 y anteriores. Se ha identificado una vulnerabilidad de validación de entradas incorrecta que podría ser explotada mediante el procesamiento de archivos POC que carecen de validación... • http://www.securityfocus.com/bid/106275 • CWE-20: Improper Input Validation •