CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-21958

A heap-based buffer overflow vulnerability exists in the Hword HwordApp.dll functionality of Hancom Office 2020 11.0.0.2353. A specially-crafted malformed file can lead to memory corruption and potential arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 72.8%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1386
https://blog.talosintelligence.com/2022/02/vuln-spotlight-.html
https://talosintelligence.com/vulnerability_reports/TALOS-2021-1386

Products affected by CVE-2021-21958

Hancom » Hancom Office 2020 » Version: 11.0.0.2353

cpe:2.3:a:hancom:hancom_office_2020:11.0.0.2353

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21958

Products

Pricing

Contact Us