CVE-2019-12812

Description

MyBuilder viewer before 6.2.2019.814 allow an attacker to execute arbitrary command via specifically crafted configuration file. This can be leveraged for code execution.

Affected products

• ActiveSoft / MyBuilderprior to 6.2.2019.814 – prior to 6.2.2019.814

References

• MISChttps://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35155