Tobesoft Xplatform
7 CVEs affecting Tobesoft Xplatform. Latest disclosed: 2021-07-20. Critical: 0, High: 6.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2020-7866 | High | 8.8 | 2021-07-20 | When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation |
CVE-2020-7815 | High | 7.8 | 2020-07-10 | XPLATFORM v9.2.260 and eariler versions contain a vulnerability that could allow remote files to be downloaded by setting the arguments to the vulnerable metho… |
CVE-2019-19162 | High | 7.8 | 2020-05-11 | A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it. |
CVE-2020-7806 | High | 7.8 | 2020-05-06 | Tobesoft Xplatform 9.2.2.250 and earlier version have an arbitrary code execution vulnerability by using method supported by Xplatform ActiveX Control. It allo… |
CVE-2019-19166 | High | 7.8 | 2020-05-06 | Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution. |
CVE-2020-7857 | High | 7.5 | 2021-04-20 | A vulnerability of XPlatform could allow an unauthenticated attacker to execute arbitrary command. This vulnerability exists due to insufficient validation of… |
CVE-2020-7853 | Medium | 5.5 | 2021-03-24 | An outbound read/write vulnerability exists in XPLATFORM that does not check offset input ranges, allowing out-of-range data to be read. An attacker can exploi… |