Vulnerability Details CVE-2020-7866
When using XPLATFORM 9.2.2.270 or earlier versions ActiveX component, arbitrary commands can be executed due to improper input validation
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.2%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 7.5
References
Products affected by CVE-2020-7866
-
cpe:2.3:a:tobesoft:xplatform:-
-
cpe:2.3:a:tobesoft:xplatform:9.1
-
cpe:2.3:a:tobesoft:xplatform:9.2
-
cpe:2.3:a:tobesoft:xplatform:9.2.0
-
cpe:2.3:a:tobesoft:xplatform:9.2.1
-
cpe:2.3:a:tobesoft:xplatform:9.2.2
-
cpe:2.3:a:tobesoft:xplatform:9.2.2.250
-
cpe:2.3:a:tobesoft:xplatform:9.2.2.260
-
cpe:2.3:a:tobesoft:xplatform:9.2.2.270
-
cpe:2.3:a:tobesoft:xplatform:9.2.2.80