CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-5291

The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx in Ashampoo 3D CAD Professional 3.x before 3.0.2 allows remote attackers to write to arbitrary files via a pathname in the first argument.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.7%

CVSS Severity

CVSS v2 Score 6.4

References

https://www.htbridge.com/advisory/HTB23019
https://www.htbridge.com/advisory/HTB23019

Products affected by CVE-2011-5291

Ashampoo Gmbh & Co. » Ashampoo 3d Cad Professional 3 » Version: 3.0

cpe:2.3:a:ashampoo_gmbh_&_co.:ashampoo_3d_cad_professional_3:3.0
Ashampoo Gmbh & Co. » Ashampoo 3d Cad Professional 3 » Version: 3.0.1

cpe:2.3:a:ashampoo_gmbh_&_co.:ashampoo_3d_cad_professional_3:3.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-5291

Products

Pricing

Contact Us