How severe is CVE-2020-7831?

CVE-2020-7831 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7831

Name: windows
Author: microsoft

8.8HIGH

A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directo

Publicado: 8/24/2020Actualizado: 11/21/2024

Descripción

A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.

Análisis IAImpulsado por IA

Productos Afectados

inogardebiz4u

cviewer_object_1.0.5.1

microsoftwindows

Referencias

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559
Third Party Advisory