CVE-2020-7821

Summary

Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a vulnerability that could allow remote attacker to execute arbitrary code by modifying the value of registry path. This can be leveraged for code execution by rebooting the victim’s PC

Affected Software

VendorProductVersion RangeStatus
TobesoftNEXACRO14/17 ExCommonApiV132019.9.6 < 2019.9.6affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References