Use After Free in Tobesoft Xplatform

CVE-2019-19162

A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it.

Vulnerability class: Use-After-Free

EPSS: 0.005 (67.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H.

Affected products

Tobesoft Xplatform — versions unspecified

Weakness classification (CWE)

CWE-416 — Use After Free

References

www.boho.or.kr/krcert/secNoticeView.do (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-19162?: CVE-2019-19162 is a high-severity vulnerability in Tobesoft Xplatform, classified under Use After Free. CVSS score: 7.8/10. Published 2020-05-11.
How severe is CVE-2019-19162?: High severity. CVSS v3 base score is 7.8 out of 10.