Vulnerability Details CVE-2019-9137
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed Image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.1%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
Products affected by CVE-2019-9137
-
cpe:2.3:a:hmtalk:daviewindy:-
-
cpe:2.3:a:hmtalk:daviewindy:8.98.4
-
cpe:2.3:a:hmtalk:daviewindy:8.98.7