CVE-2020-7818

Summary

DaviewIndy 8.98.9 and earlier has a Heap-based overflow vulnerability, triggered when the user opens a malformed PDF file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
HumanTolk Co.LtdDaviewIndy8.98.9 and earlieraffected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References