An issue was found in the Evernote client for Windows 10, 7, and 2008 in the protocol handler. This enables attackers for arbitrary command execution if the user clicks on a specially crafted URL. AKA: WINNOTE-19941.
CPE | Name | Operator | Version |
---|---|---|---|
evernote | eq | 6.17.7 | |
evernote | eq | 6.18 beta2 |