How severe is CVE-2020-7826?

CVE-2020-7826 has a CVSS v3 score of 8.8 (HIGH).

CVE-2020-7826

Name: bflyinstallerx.ocx
Author: eyesurfer

8.8HIGH

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leverage

发布于: 7/17/2020更新于: 11/21/2024

描述

EyeSurfer BflyInstallerX.ocx v1.0.0.16 and earlier versions contain a vulnerability that could allow remote files to be download by setting the arguments to the vulnerable method. This can be leveraged for code execution. When the vulnerable method is called, they fail to properly check the parameters that are passed to it.

AI分析AI驱动

受影响产品

eyesurferbflyinstallerx.ocx

参考资料

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35512
Third Party Advisory