exploitDog

CVE-2019-19605

Опубликовано: 30 мар. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

X-Plane before 11.41 allows Arbitrary Memory Write via crafted network packets, which could cause a denial of service or arbitrary code execution.

Ссылки

https://blog.0xlabs.com/2020/03/x-plane-1141-remote-command-execution.html
Exploit
Third Party Advisory
https://blog.0xlabs.com/2020/03/x-plane-1141-remote-command-execution.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:x-plane:x-plane:*:*:*:*:*:*:*:*

Версия до 11.41 (исключая)

EPSS

Процентиль: 60%

0.00399

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-8rm8-j9w9-pfwm

github

больше 3 лет назад

X-Plane 11.41 and earlier allows Arbitrary Memory Write via crafted network packets, which could cause a denial of service or arbitrary code execution.

EPSS

Процентиль: 60%

0.00399

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-787