CVEDB API

In irisnet-crypto before 1.1.7 for IRISnet, the util/utils.js file allows code execution because of unsafe eval usage.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2019-9115

Irisnet » Irisnet-Crypto » Version: N/A

cpe:2.3:a:irisnet:irisnet-crypto:-
Irisnet » Irisnet-Crypto » Version: 1.0.1

cpe:2.3:a:irisnet:irisnet-crypto:1.0.1
Irisnet » Irisnet-Crypto » Version: 1.0.2

cpe:2.3:a:irisnet:irisnet-crypto:1.0.2
Irisnet » Irisnet-Crypto » Version: 1.0.3

cpe:2.3:a:irisnet:irisnet-crypto:1.0.3
Irisnet » Irisnet-Crypto » Version: 1.0.4

cpe:2.3:a:irisnet:irisnet-crypto:1.0.4
Irisnet » Irisnet-Crypto » Version: 1.1.0

cpe:2.3:a:irisnet:irisnet-crypto:1.1.0
Irisnet » Irisnet-Crypto » Version: 1.1.1

cpe:2.3:a:irisnet:irisnet-crypto:1.1.1
Irisnet » Irisnet-Crypto » Version: 1.1.2

cpe:2.3:a:irisnet:irisnet-crypto:1.1.2
Irisnet » Irisnet-Crypto » Version: 1.1.3

cpe:2.3:a:irisnet:irisnet-crypto:1.1.3
Irisnet » Irisnet-Crypto » Version: 1.1.4

cpe:2.3:a:irisnet:irisnet-crypto:1.1.4
Irisnet » Irisnet-Crypto » Version: 1.1.5

cpe:2.3:a:irisnet:irisnet-crypto:1.1.5
Irisnet » Irisnet-Crypto » Version: 1.1.6

cpe:2.3:a:irisnet:irisnet-crypto:1.1.6