CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-7831

A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.0%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35559

Products affected by CVE-2020-7831

Inogard » Ebiz4u » Version: cviewer_object_1.0.5.1

cpe:2.3:a:inogard:ebiz4u:cviewer_object_1.0.5.1
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7831

Products

Pricing

Contact Us