Stack-based Buffer Overflow Vulnerability in Delta Electronics TPEditor
CVE-2019-13540

7.8HIGH

Key Information:

Vendor: Delta Electronics
Status: Tpeditor
Vendor: CVE Published:; 11 September 2019

🔔 Create Delta Electronics Vulnerability Alert

What is CVE-2019-13540?

Delta Electronics TPEditor is susceptible to multiple stack-based buffer overflow vulnerabilities. These vulnerabilities can be exploited by an attacker who processes specially crafted project files, potentially leading to remote execution of arbitrary code. The affected versions include TPEditor 1.94 and earlier, therefore it is crucial for users to evaluate their current installations and apply necessary security patches or upgrades. For further information and mitigation strategies, refer to the advisory from US-CERT.

Affected Version(s)

TPEditor 1.94 and prior

References

https://www.us-cert.gov/ics/advisories/icsa-19-253-01

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2019
Vulnerability Reserved
Jul 11, 2019

CVE-2019-13540 Data

JSON