CVE-2020-7872

Summary

DaviewIndy v8.98.7.0 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed format file that is mishandled by DaviewIndy. Attackers could exploit this and arbitrary code execution.

Affected Software

VendorProductVersion RangeStatus
HumanTalkDaviewIndy8.98.7.0 and prior < 8.98.8.0affected

Weaknesses

  • CWE-190: CWE-190 Integer Overflow or Wraparound

ADP Enrichment

CVE Program Container

Additional References

References