CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-7846

Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.9%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 6.8

References

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35919
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35919

Products affected by CVE-2020-7846

Cnesty » Helpcom » Version: N/A

cpe:2.3:a:cnesty:helpcom:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7846

Products

Pricing

Contact Us