Out-of-Bounds Read Vulnerability in Delta Electronics TPEditor
CVE-2020-16219

7.8HIGH

Key Information:

Vendor

Deltaww

Status
Delta Electronics Tpeditor
Vendor
CVE Published:
7 August 2020

What is CVE-2020-16219?

Delta Electronics TPEditor, specifically versions 1.97 and earlier, is susceptible to an out-of-bounds read vulnerability that can be exploited through specially crafted project files. Attackers who successfully exploit this vulnerability may gain the ability to read or modify sensitive information, execute arbitrary code, or cause the application to crash, potentially compromising the integrity and availability of the system.

Affected Version(s)

Delta Electronics TPEditor TPEditor Versions 1.97 and prior

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-219-04
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-20-961/
x_refsource_MISC
https://www.zerodayinitiative.com/advisories/ZDI-20-963/
x_refsource_MISC

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.