CVE-2018-19008

Summary

The TextEditor 2.0 in ABB CP400 Panel Builder versions 2.0.7.05 and earlier contain a vulnerability in the file parser of the Text Editor wherein the application doesn't properly prevent the insertion of specially crafted files which could allow arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
ICS-CERTABB CP400 Panel Builder TextEditor 2.0Versions 2.0.7.05 and earlieraffected

Weaknesses

  • CWE-20: IMPROPER INPUT VALIDATION CWE-20

ADP Enrichment

CVE Program Container

Additional References

References