How severe is CVE-2020-7831?

CVE-2020-7831 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7831

Name: windows
Author: microsoft

8.8HIGH

A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directo

Published: 8/24/2020Updated: 11/21/2024

Description

A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.

AI AnalysisPowered by AI

Affected Products

inogardebiz4u

cviewer_object_1.0.5.1

microsoftwindows

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559
Third Party Advisory