Cx Supervisor
Approved changes feed: RSS · Atom
cpe:2.3:a:ics-cert:cx-supervisor:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Ics Cert (051affbf-57c0-5afb-b9c5-709cc698da32) |
|---|---|
| Product | Cx Supervisor (f37f595d-06bd-535e-a13f-744e847d8f0c) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-19020 |
vulnerable | 2026-06-03 14:38:28.829573 |
Details available
When CX-Supervisor (Versions 3.42 and prior) processes project files and tampers with the value of an offset, an attacker can force the application to read a value outside of an array.
Published: 2019-02-12T22:00:00.000Z
Updated: 2024-09-17T03:27:41.239Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19019 |
vulnerable | 2026-06-03 14:38:28.829294 |
Details available
A type confusion vulnerability exists when processing project files in CX-Supervisor (Versions 3.42 and prior). An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Published: 2019-01-22T20:00:00.000Z
Updated: 2024-09-17T01:16:24.999Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19018 |
vulnerable | 2026-06-03 14:38:28.828987 |
Details available
An access of uninitialized pointer vulnerability in CX-Supervisor (Versions 3.42 and prior) could lead to type confusion when processing project files. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Published: 2019-02-12T22:00:00.000Z
Updated: 2024-09-16T20:32:03.769Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19017 |
vulnerable | 2026-06-03 14:38:28.828659 |
Details available
Several use after free vulnerabilities have been identified in CX-Supervisor (Versions 3.42 and prior). When processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit and execute code under the privileges of the application.
Published: 2019-01-22T20:00:00.000Z
Updated: 2024-09-17T01:00:42.376Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19015 |
vulnerable | 2026-06-03 14:38:28.821820 |
Details available
An attacker could inject commands to launch programs and create, write, and read files on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file. An attacker could exploit this to execute code under the privileges of the application.
Published: 2019-01-28T19:00:00.000Z
Updated: 2024-09-16T17:03:35.726Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19013 |
vulnerable | 2026-06-03 14:38:28.821021 |
Details available
An attacker could inject commands to delete files and/or delete the contents of a file on CX-Supervisor (Versions 3.42 and prior) through a specially crafted project file.
Published: 2019-01-22T20:00:00.000Z
Updated: 2024-09-16T19:40:40.349Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2018-19011 |
vulnerable | 2026-06-03 14:38:28.819508 |
Details available
CX-Supervisor (Versions 3.42 and prior) can execute code that has been injected into a project file. An attacker could exploit this to execute code under the privileges of the application.
Published: 2019-01-22T20:00:00.000Z
Updated: 2024-09-16T20:57:24.608Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.