cvedb.io
CVE-2018-5204
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2018-12-28T16:29:06.033 · Last modified 2026-06-17T01:59:50.270

Summary

ML Report version Between 2.00.000.0000 and 2.18.628.5980 contains a vulnerability that could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. this can be leveraged for code execution.

Affected products

infraware-global — ml_report

Does this affect you?

Add your gear to cvedb and we'll alert you only when infraware-global ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.