EUVD-2019-15485

🗓️ 07 Oct 2025 00:30:54Reported by EUVDType

Input validation flaw in POWER EGG allows remote server execution of EL expressions in multiple versions

Reporter	Title	Published	Views	Family All 6
CVE	CVE-2019-5916	13 Feb 201918:00	–	cve
Cvelist	CVE-2019-5916	13 Feb 201918:00	–	cvelist
Japan Vulnerability Notes	JVN#63860183: POWER EGG vulnerability where EL expression may be executed	5 Feb 201900:00	–	jvn
Japan Vulnerability Notes	POWER EGG vulnerability where EL expression may be executed	5 Feb 201905:09	–	jvn
NVD	CVE-2019-5916	13 Feb 201918:29	–	nvd
Prion	Input validation	13 Feb 201918:29	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "1c5339bc-60cb-34c4-9c92-8815629f1eb9",
        "vendor": {
          "name": "D-CIRCLE inc."
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "3ae4f6d2-cb40-3a9b-b9c2-28c09c8353b3",
        "product": {
          "name": "POWER EGG"
        },
        "product_version": "(Ver 2.0.1, Ver 2.02 Patch 3 and earlier, Ver 2.1 Patch 4 and earlier, Ver 2.2 Patch 7 and earlier, Ver 2.3 Patch 9 and earlier, Ver 2.4 Patch 13 and earlier, Ver 2.5 Patch 12 and earlier, Ver 2.6 Patch 8 and earlier, Ver 2.7 Patch 6 and earlier, Ver 2.7 Government Edition Patch 7 and earlier, Ver 2.8 Patch 6 and earlier, Ver 2.8c Patch 5 and earlier, Ver 2.9 Patch 4 and earlier)"
      }
    ]
  }
]

Source	Link
poweregg	www.poweregg.d-circle.com/support/package/important/20190204_000780/
jvn	www.jvn.jp/en/jp/JVN63860183/index.html
github	www.github.com/advisories/GHSA-293c-r3p4-g63r

07 Oct 2025 00:30Current

8.1High risk

Vulners AI Score8.1

CVSS 3.19.8

CVSS 27.5

EPSS0.00868