HIGH🇬🇧 English

CVE-2022-24077

CVSS 7.8v3.1pub. 2022-06-13upd. 2024-11-21

Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Naver Cloud Explorer

    APP
    Naver
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2020-9752CRITICAL9.8ten sam produkt

Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem a...

CVE-2020-9751CRITICAL9.1ten sam produkt

Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's serve...

CVE-2019-13156HIGH7.5ten sam produkt

NDrive(1.2.2).sys in Naver Cloud Explorer has a stack-based buffer overflow, which allows attackers to cause a...

CVE-2025-49223CRITICAL9.8PL ✓ten sam vendor

Prototype pollution w billboard.js umożliwia RCE lub DoS

CVE-2024-28211CRITICAL9.8PL ✓ten sam vendor

Naver nGrinder — RCE przez złośliwy serwer JMX/RMI