CVE-2018-19008

Vulnerability

The TextEditor 2.0 component in ABB CP400 Panel Builder (CP400PB) versions 2.0.7.05 and prior contains an improper input validation vulnerability (CWE-20). The application's file parser does not properly prevent the insertion of specially crafted files, which could allow arbitrary code execution [1]. This affects the Panel Builder for CP405 and CP408 control panels.

Exploitation

An attacker must have local access to the system and convince a user to open a specially crafted file with the Text Editor. The CVSS vector string (AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H) indicates the attack is local, has high complexity, requires user interaction, and no privileges [1]. The attacker would need to deliver a malicious file to the target user and have them open it via the Text Editor.

Impact

Successful exploitation allows an attacker to execute arbitrary code within the context of the Text Editor application. This could lead to full compromise of confidentiality, integrity, and availability (CIA), including potential denial-of-service. The impact is limited to the application scope (unchanged scope), but since arbitrary code execution may allow escalation, it constitutes a high severity risk [1].

Mitigation

ABB recommends users of affected versions (2.0.7.05 and prior) update to the latest version 2.1.7.21, which can be requested through ABB's official product page [1]. Additionally, ABB advises conducting cybersecurity awareness training, following general best practices for industrial control systems, and implementing firewall configurations to protect process control networks from external attacks [1].