{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-25T03:57:45.410","vulnerabilities":[{"cve":{"id":"CVE-2018-19005","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2018-12-20T21:29:00.883","lastModified":"2026-06-17T01:48:37.457","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cscape, Version 9.80.75.3 SP3 and prior. An improper input validation vulnerability has been identified that may be exploited by processing specially crafted POC files lacking user input validation. This may allow an attacker to read confidential information and remotely execute arbitrary code."},{"lang":"es","value":"Cscape, en versiones 9.80.75.3 SP3 y anteriores. Se ha identificado una vulnerabilidad de validación de entradas incorrecta que podría ser explotada mediante el procesamiento de archivos POC que carecen de validación de entradas de usuario. Esto podría permitir que un atacante lea información confidencial y ejecute código arbitrario de forma remota."}],"affected":[{"source":"ics-cert@hq.dhs.gov","affectedData":[{"vendor":"n/a","product":"Cscape","versions":[{"version":"Cscape Version 9.80.75.3 SP3 and prior.","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:P/I:P/A:P","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"ics-cert@hq.dhs.gov","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hornerautomation:cscape:*:*:*:*:*:*:*:*","versionEndExcluding":"9.80.75.3","matchCriteriaId":"51EEA353-FA8E-469A-98C1-D62620F7F566"},{"vulnerable":true,"criteria":"cpe:2.3:a:hornerautomation:cscape:9.80.75.3:-:*:*:*:*:*:*","matchCriteriaId":"CE7B89DC-12F4-48C8-B12E-C8E81AE253F2"},{"vulnerable":true,"criteria":"cpe:2.3:a:hornerautomation:cscape:9.80.75.3:sp1:*:*:*:*:*:*","matchCriteriaId":"8261ABEA-4246-46C0-A8CE-E93C38BD5F77"},{"vulnerable":true,"criteria":"cpe:2.3:a:hornerautomation:cscape:9.80.75.3:sp2:*:*:*:*:*:*","matchCriteriaId":"4F6843DC-A95F-42A2-9EB1-E57C4E6E63F5"},{"vulnerable":true,"criteria":"cpe:2.3:a:hornerautomation:cscape:9.80.75.3:sp3:*:*:*:*:*:*","matchCriteriaId":"D0A86680-7C8A-445A-A008-5366D81967E1"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/106275","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-354-01","source":"ics-cert@hq.dhs.gov","tags":["Third Party Advisory","US Government Resource"]},{"url":"http://www.securityfocus.com/bid/106275","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://ics-cert.us-cert.gov/advisories/ICSA-18-354-01","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","US Government Resource"]}]}}]}