CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7815

XPLATFORM v9.2.260 and eariler versions contain a vulnerability that could allow remote files to be downloaded by setting the arguments to the vulnerable method. this can be leveraged for code execution. File download vulnerability in ____COMPONENT____ of TOBESOFT XPLATFORM allows ____ATTACKER/ATTACK____ to cause ____IMPACT____. This issue affects: TOBESOFT XPLATFORM 9.2.250 versions prior to 9.2.260 on Windows.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.0%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.5

References

Products affected by CVE-2020-7815

Tobesoft » Xplatform » Version: N/A

cpe:2.3:a:tobesoft:xplatform:-
Tobesoft » Xplatform » Version: 9.1

cpe:2.3:a:tobesoft:xplatform:9.1
Tobesoft » Xplatform » Version: 9.2

cpe:2.3:a:tobesoft:xplatform:9.2
Tobesoft » Xplatform » Version: 9.2.0

cpe:2.3:a:tobesoft:xplatform:9.2.0
Tobesoft » Xplatform » Version: 9.2.1

cpe:2.3:a:tobesoft:xplatform:9.2.1
Tobesoft » Xplatform » Version: 9.2.2

cpe:2.3:a:tobesoft:xplatform:9.2.2
Tobesoft » Xplatform » Version: 9.2.2.250

cpe:2.3:a:tobesoft:xplatform:9.2.2.250
Tobesoft » Xplatform » Version: 9.2.2.260

cpe:2.3:a:tobesoft:xplatform:9.2.2.260
Tobesoft » Xplatform » Version: 9.2.2.80

cpe:2.3:a:tobesoft:xplatform:9.2.2.80
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7815

Products

Pricing

Contact Us