CVE-2020-7814

2020-07-10T13:15:00
ID CVE-2020-7814
Type cve
Reporter vuln@krcert.or.kr
Modified 2021-07-21T11:39:00

Description

RAONWIZ v2018.0.2.50 and eariler versions contains a vulnerability that could allow remote files to be downloaded and excuted by lack of validation to file extension, witch can used as remote-code-excution attacks by hackers File download & execution vulnerability in _COMPONENT of RAONWIZ RAON KUpload allows _ATTACKER/ATTACK to cause _IMPACT_. This issue affects: RAONWIZ RAON KUpload 2018.0.2.50 versions prior to 2018.0.2.51 on Windows.