X-Plane: Security Vulnerabilities
X-Plane before 11.41 allows Arbitrary Memory Write via crafted network packets, which could cause a denial of service or arbitrary code execution.
CVSS Score
9.8
EPSS Score
0.01
Published
2020-03-30
X-Plane before 11.41 has multiple improper path validations that could allow reading and writing files from/to arbitrary paths (or a leak of OS credentials to a remote system) via crafted network packets. This could be used to execute arbitrary commands on the system.
CVSS Score
9.8
EPSS Score
0.006
Published
2020-03-30