CVE-2017-8387

2017-07-0519:00:00

mitre

www.cve.org

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

40.5%

JSON

STDU Viewer version 1.6.375 might allow user-assisted attackers to execute code via a crafted file. One threat model is a victim who obtains an untrusted crafted file from a remote location and issues several user-defined commands including Ctrl-+ commands.

References

github.com/wlinzi/security_advisories/tree/master/CVE-2017-8387