CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-19858

Platinum Upnp SDK through 1.2.0 has a directory traversal vulnerability. The attack could remote attack victim by sending http://ip:port/../privacy.avi URL to compromise a victim's privacy.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://github.com/plutinosoft/Platinum/commit/9a4ceaccb1585ec35c45fd8e2585538fff6a865e
https://github.com/plutinosoft/Platinum/issues/22
https://github.com/plutinosoft/Platinum/commit/9a4ceaccb1585ec35c45fd8e2585538fff6a865e
https://github.com/plutinosoft/Platinum/issues/22

Products affected by CVE-2020-19858

Plutinosoft » Platinum » Version: 1.0.9

cpe:2.3:a:plutinosoft:platinum:1.0.9
Plutinosoft » Platinum » Version: 1.0.9.2

cpe:2.3:a:plutinosoft:platinum:1.0.9.2
Plutinosoft » Platinum » Version: 1.1.0

cpe:2.3:a:plutinosoft:platinum:1.1.0
Plutinosoft » Platinum » Version: 1.1.1

cpe:2.3:a:plutinosoft:platinum:1.1.1
Plutinosoft » Platinum » Version: 1.2.0

cpe:2.3:a:plutinosoft:platinum:1.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-19858

Products

Pricing

Contact Us