CVE-2020-9752

2020-03-2302:15:13

CWE-73

naver

www.cve.org

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

60.8%

JSON

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe.

CNA Affected

[
  {
    "product": "Naver Cloud Explorer",
    "vendor": "NAVER Corporation",
    "versions": [
      {
        "lessThanOrEqual": "2.2.2.11",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

cve.naver.com/detail/cve-2020-9752