CVE-2020-7831
8.8HIGHA vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directo
Опубликовано: 8/24/2020Обновлено: 11/21/2024
Описание
A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.
ИИ-АнализНа базе ИИ
Затронутые продукты
inogardebiz4u
cviewer_object_1.0.5.1
microsoftwindows
-
Ссылки
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559Third Party Advisory
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559Third Party Advisory