How severe is CVE-2020-7826?

CVE-2020-7826 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7826

Name: bflyinstallerx.ocx
Author: eyesurfer

8.8HIGH

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leverage

Published: 7/17/2020Updated: 11/21/2024

Description

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leveraged for code execution. When the vulnerable method is called, they fail to properly check the parameters that are passed to it.

AI AnalysisPowered by AI

Affected Products

eyesurferbflyinstallerx.ocx

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory