Vulnerability Details CVE-2020-7867
An improper input validation vulnerability in Helpu solution could allow a local attacker to arbitrary file creation and execution without click file transfer menu. It is possible to file in arbitrary directory for user because the viewer program receive the file from agent with privilege of administrator.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.4%
CVSS Severity
CVSS v3 Score 8.0
CVSS v2 Score 4.6
References
Products affected by CVE-2020-7867
-
cpe:2.3:a:helpu:helpuviewer:2018.5.21.0