CVE-2019-12812

Summary

MyBuilder viewer before 6.2.2019.814 allow an attacker to execute arbitrary command via specifically crafted configuration file. This can be leveraged for code execution.

Affected Software

VendorProductVersion RangeStatus
ACTIVESOFTMyBuilderprior to 6.2.2019.814affected

Weaknesses

  • CWE-78: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CVE Program Container

Additional References

References