How severe is CVE-2020-7826?

CVE-2020-7826 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7826

Name: bflyinstallerx.ocx
Author: eyesurfer

8.8HIGH

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leverage

Опубликовано: 7/17/2020Обновлено: 11/21/2024

Описание

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leveraged for code execution. When the vulnerable method is called, they fail to properly check the parameters that are passed to it.

ИИ-АнализНа базе ИИ

Затронутые продукты

eyesurferbflyinstallerx.ocx

Ссылки

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory