3 matches found
CVE-2022-27176
The CVE-2022-27176 issue concerns incomplete filtering of special elements in RevoWorks components (SCVX, Browser, Desktop) using the File Sanitization Library/Option. The underlying problem is incomplete filtering that fails to detect/remove Microsoft Excel 4.0 macros, enabling a user to downloa...
CVE-2021-20791
CVE-2021-20791 (RevoWorks Browser) is an improper access control vulnerability affecting RevoWorks Browser 2.1.230 and earlier. The issue allows an attacker to bypass access restrictions and exchange unauthorized files between the user’s local environment and the browser’s isolated environment vi...
CVE-2021-20790
CVE-2021-20790 affects RevoWorks Browser (versions up to 2.1.230) and is described as an improper control of program execution (CWE-114) between the isolated environment and the local environment. The vulnerability allows an attacker to execute arbitrary commands or code on the user’s browser run...