CVE-2019-18994
published 2019-12-18CVE-2019-18994: Due to a lack of file length check, the HMIStudio component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier crashes when trying to load an empty…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNINAH
Due to a lack of file length check, the HMIStudio component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier crashes when trying to load an empty *.JPR application file. An attacker with access to the file system might be able to cause application malfunction such as denial of service.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| abb | abb_pb610_panel_builder_600 | unspecified – 2.8.0.424 | — |
| abb | pb610_panel_builder_600 | <= 2.8.0.424 | — |