Vulnerabilities > CVE-2018-19855 - Improper Neutralization of Formula Elements in a CSV File vulnerability in Uipath Orchestrator
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
HIGH Availability impact
NONE Summary
UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the Audit export, Robot log export, and Transaction log export features.