CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12554

In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the WSubStr function (provided by the scripting engine) allows an attacker to cause a denial of service by crashing the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.5%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/ereisr00/bagofbugz/blob/master/010Editor/WSubStr.bt
https://www.sweetscape.com/010editor/release_notes.html
https://github.com/ereisr00/bagofbugz/blob/master/010Editor/WSubStr.bt
https://www.sweetscape.com/010editor/release_notes.html

Products affected by CVE-2019-12554

Sweetscape » 010 Editor » Version: 9.0.1

cpe:2.3:a:sweetscape:010_editor:9.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12554

Products

Pricing

Contact Us