CVE-2020-7875

Summary

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution.

Affected Software

VendorProductVersion RangeStatus
RAONWIZDEXT5 Upload5.0.0.117 <= 5.0.0.117affected

Weaknesses

  • CWE-494: CWE-494 Download of Code Without Integrity Check

ADP Enrichment

CVE Program Container

Additional References

References