Stack-based Buffer Overflow Vulnerability in Delta Electronics TPEditor
CVE-2019-13540

7.8HIGH

Key Information:

Vendor: Delta Electronics
Status: Tpeditor
Vendor: CVE Published:; 11 September 2019

Summary

Delta Electronics TPEditor is susceptible to multiple stack-based buffer overflow vulnerabilities. These vulnerabilities can be exploited by an attacker who processes specially crafted project files, potentially leading to remote execution of arbitrary code. The affected versions include TPEditor 1.94 and earlier, therefore it is crucial for users to evaluate their current installations and apply necessary security patches or upgrades. For further information and mitigation strategies, refer to the advisory from US-CERT.

Affected Version(s)

TPEditor 1.94 and prior

References

https://www.us-cert.gov/ics/advisories/icsa-19-253-01

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Sep 11, 2019
Vulnerability Reserved
Jul 11, 2019