Vulnerabilities > CVE-2018-18987 - Deserialization of Untrusted Data vulnerability in Invt Vt-Designer 2.1.7.31
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
VT-Designer Version 2.1.7.31 is vulnerable by the program populating objects with user supplied input via a file without first checking for validity, allowing attacker supplied input to be written to known memory locations. This may cause the program to crash or allow remote code execution.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |