How severe is CVE-2020-7826?

CVE-2020-7826 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7826

Name: bflyinstallerx.ocx
Author: eyesurfer

8.8HIGH

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leverage

Publicado: 7/17/2020Actualizado: 11/21/2024

Descripción

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leveraged for code execution. When the vulnerable method is called, they fail to properly check the parameters that are passed to it.

Análisis IAImpulsado por IA

Productos Afectados

eyesurferbflyinstallerx.ocx

Referencias

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory