CVE-2020-7808
RAONWIZ Inc K Upload, arguments modiffication via missing support for integrity check vulnerability
In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processing without integrity check on update module(web.js) allows an attacker to modify arguments which causes downloading a random DLL and injection on it.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:H
Productos afectados
RAONWIZ Inc · K Upload¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →