Description

Improper Control of Generation of Code ('Code Injection') vulnerability in Soflyy Oxygen Builder allows Code Injection. Vendor is ignoring report, refuses to patch the issue.This issue affects Oxygen Builder: from n/a through 4.9.

INFO

Published Date :

2024-04-03T11:41:27.576Z

Last Modified :

2026-04-28T16:09:31.687Z

Source :

Patchstack
AFFECTED PRODUCTS

The following products are affected by CVE-2024-31380 vulnerability.

Vendors Products
Soflyy
  • Oxygen

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact