CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-13012

Download of code with improper integrity check in snsupd.exe and upd.exe in SAFE'N'SEC SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure, and SoftControl/SafenSoft Enterprise Suite before 4.4.12 allows the remote attacker to execute unauthorized code by substituting a forged update server.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.8%

CVSS Severity

CVSS v3 Score 8.1

CVSS v2 Score 6.8

References

http://www.safensoft.com/security.phtml?c=865#SNSVE-2018-5
http://www.safensoft.com/security.phtml?c=865#SNSVE-2018-5

Products affected by CVE-2018-13012

Safensoft » Softcontrol Enterprise Suite » Version: 4.4.1

cpe:2.3:a:safensoft:softcontrol_enterprise_suite:4.4.1
Safensoft » Softcontrol Syswatch » Version: 4.4.1

cpe:2.3:a:safensoft:softcontrol_syswatch:4.4.1
Safensoft » Softcontrol Tpsecure » Version: 4.4.1

cpe:2.3:a:safensoft:softcontrol_tpsecure:4.4.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-13012

Products

Pricing

Contact Us