Vulnerabilities > CVE-2018-19855 - Improper Neutralization of Formula Elements in a CSV File vulnerability in Uipath Orchestrator
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the Audit export, Robot log export, and Transaction log export features.