Oneupsecurity

**Name of the Vulnerable Software and Affected Versions** Delta Electronics TPEditor versions 1.97 and prior **Description** A write-what-where condition may be exploited by processing a specially crafted project file, potentially allowing an attacker to read or modify information, execute arbitrary code, and/or crash the application. **Recommendations** For Delta Electronics TPEditor versions 1.97 and prior, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Delta Electronics TPEditor versions 1.97 and prior **Description** The issue is related to improper input validation. It can be exploited by processing a specially crafted project file that is not validated when the data is entered by a user. Successful exploitation may allow an attacker to read or modify information, execute arbitrary code, and/or crash the application. **Recommendations** For versions 1.97 and prior, consider avoiding the use of untrusted project files until a patch is available. As a temporary workaround, restrict the ability to open or process project files from untrusted sources to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.