GCVE - cpe:2.3:a:raonwiz:dext5:2.7:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:raonwiz:dext5:2.7:*:*:*:*:*:*:*

part: a version: 2.7 update: *

Vendor	Raonwiz (`3ee94818-8a7c-5c00-a906-5734aa1a937f`)
Product	Dext5 (`5a966150-4637-5230-a6dc-e9d2be676c85`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-19169`	vulnerable	2026-06-08 05:13:21.600263	Details available HIGH (7.8) Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download arbitrary file by setting the arguments to the activex method. This can be leveraged for code execution. Published: 2020-05-06T12:54:08.000Z Updated: 2024-08-05T02:09:39.405Z Open on db.gcve.eu Reference links http://www.dext5.com/page/support/notice_view.aspx?pSeq=26 https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35353	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-19168`	vulnerable	2026-06-08 05:13:21.599848	Details available HIGH (7.8) Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex method. This can be leveraged for code execution. Published: 2020-05-06T12:54:11.000Z Updated: 2024-08-05T02:09:39.363Z Open on db.gcve.eu Reference links http://www.dext5.com/page/support/notice_view.aspx?pSeq=26 https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35352	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-19164`	vulnerable	2026-06-08 05:13:21.589461	Dext5 Upload ActiveX Arbitrary File Execution Vulnerability HIGH (7.8) dext5.ocx ActiveX Control in Dext5 Upload 5.0.0.112 and earlier versions contains a vulnerability that could allow remote files to be executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection. Published: 2020-05-07T18:00:57.000Z Updated: 2024-08-05T02:09:39.379Z Open on db.gcve.eu Reference links https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35344 http://www.dext5.com/page/support/notice_view.aspx?pSeq=23	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.