Vulnerabilities > X Plane > X Plane > 11.40
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-30 | CVE-2019-19606 | OS Command Injection vulnerability in X-Plane X-Plane before 11.41 has multiple improper path validations that could allow reading and writing files from/to arbitrary paths (or a leak of OS credentials to a remote system) via crafted network packets. | 9.8 |
| 2020-03-30 | CVE-2019-19605 | Out-of-bounds Write vulnerability in X-Plane X-Plane before 11.41 allows Arbitrary Memory Write via crafted network packets, which could cause a denial of service or arbitrary code execution. | 9.8 |