Lucene search
PRIOn knowledge basePRION:CVE-2022-27176HistoryJun 14, 2022 - 9:15 a.m.
Design/Logic Flaw
2022-06-1409:15:00
PRIOn knowledge base
www.prio-n.com
3
Incomplete filtering of special elements vulnerability exists in RevoWorks SCVX using ‘File Sanitization Library’ 1.043 and prior versions, RevoWorks Browser 2.2.67 and prior versions (when using ‘File Sanitization Option’), and RevoWorks Desktop 2.1.84 and prior versions (when using ‘File Sanitization Option’), which may allow an attacker to execute a malicious macro by having a user to download, import, and open a specially crafted file in the local environment.
| CPE | Name | Operator | Version |
|---|---|---|---|
| revoworks_browser | lt | 2.2.69 | |
| revoworks_desktop | lt | 2.1.85 | |
| revoworks_scvx | lt | 1.0.44 |
Related
cve
cve
CVE-2022-27176
2022-06-14 09:15:09
cvelist
cvelist
CVE-2022-27176
2022-06-14 07:05:36
nvd
nvd
CVE-2022-27176
2022-06-14 09:15:09
jvn
jvn
JVN#27256219: RevoWorks incomplete filtering of MS Office v4 macros
2022-05-27 00:00:00