VYPR

ActiveX moudle

by NeoRS

CVEs (2)

  • CVE-2022-23763HigJun 28, 2022
    risk 0.51cvss 7.8epss 0.00

    Origin validation error vulnerability in NeoRS’s ActiveX moudle allows attackers to download and execute arbitrary files. Remote attackers can use this vulerability to encourage users to access crafted web pages, causing damage such as malicious code infections.

  • CVE-2020-7880HigNov 30, 2021
    risk 0.49cvss 7.5epss 0.02

    The vulnerabilty was discovered in ActiveX module related to NeoRS remote support program. This issue allows an remote attacker to download and execute remote file. It is because of improper parameter validation of StartNeoRS function in ActiveX.