CVE-2019-17322

CVE-2019-17322

Vendor Clipsoft

Product REXPERT

Weakness CWE-264

Published October 30, 2019

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

ClipSoft REXPERT 1.0.0.527 and earlier version allows arbitrary file creation via a POST request with the parameter set to the file path to be written. This can be an executable file that is written to in the arbitrary directory. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page.

Key dates

02Disclosure timeline

October 30, 2019 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-17322

Related vulnerabilities

01Description

02Disclosure timeline

03References

04Related CVE