← back
CVE-2020-7866

Tobesoft XPLATFORM Arbitrary Command Execution Vulnerability

CVSS 8.8 HIGHEPSS 1.0%CWE-20
When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Tobesoft · XPLATFORM

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=36082http://support.tobesoft.co.kr/Support/index.html