Unrated severityNVD Advisory· Published Oct 28, 2021· Updated Aug 4, 2024

RAONWIZ DEXT5 Upload ActiveX remote file execution vulnerability

CVE-2020-7875

Description

DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution.

Affected products

FriendsOfFlarum/Uploadllm-fuzzy
Range: <=5.0.0.117
RAONWIZ/DEXT5 Uploadv5
Range: 5.0.0.117

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.boho.or.kr/krcert/secNoticeView.domitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000