VYPR
Unrated severityNVD Advisory· Published Jan 2, 2019· Updated Aug 5, 2024

CVE-2018-5197

CVE-2018-5197

Description

A vulnerability in the ExtCommon.dll user extension module version 9.2, 9.2.1, 9.2.2 of Xplatform ActiveX could allow attacker to perform a command injection attack. The vulnerability is due to insufficient input validation of command parameters. An crafted malicious parameters could cause arbitrary command to execute.

Affected products

2
  • Tobesoft/XPLATFORMllm-fuzzy2 versions
    9.2, 9.2.1, 9.2.2+ 1 more
    • (no CPE)range: 9.2, 9.2.1, 9.2.2
    • (no CPE)range: extcommon.dll 9.2, 9.2.1, 9.2.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.