CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12805

NCSOFT Game Launcher, NC Launcher2 2.4.1.691 and earlier versions have a vulnerability in the custom protocol handler that could allow remote attacker to execute arbitrary command. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. This can be leveraged for code execution in the context of the current user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35106
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35106

Products affected by CVE-2019-12805

Ncsoft » Nc Launcher2 » Version: 2.4.1.691

cpe:2.3:a:ncsoft:nc_launcher2:2.4.1.691

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12805

Products

Pricing

Contact Us