Vulnerability in Wellintech Kingview
CVE-2013-6128
The KCHARTXYLib.KChartXY ActiveX control in KChartXY.ocx before 65.30.30000.10002 in WellinTech KingView before 6.53 does not properly restrict SaveToFile method calls, which allows remote attackers to create or overwrite arbitrary files…
EPSS: 0.100 (93.2th percentile) — read the EPSS interpretation.
Affected products
- Wellintech Kingview
- N/a — versions n/a
Weakness classification (CWE)
References
- 28085 (exploit, x_refsource_EXPLOIT-DB)
- ics-cert@hq.dhs.gov (US Government Resource, Patch, x_refsource_MISC)