Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Tobesoft Nexacro14 ActiveX File Download Vulnerability
Vulnerability Description
Tobesoft Nexacro v2019.9.25.1 and earlier version have an arbitrary code execution vulnerability by using method supported by Nexacro14 ActiveX Control. It allows attacker to cause remote code execution.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
下载代码缺少完整性检查
Vulnerability Title
Tobesoft Nexacro 安全漏洞
Vulnerability Description
Tobesoft Nexacro是韩国Tobesoft公司的一套基于统一框架的OSMU(单来源多用途)应用程序开发解决方案。 Tobesoft Nexacro 2019.9.25.1及之前版本中存在安全漏洞。远程攻击者可利用该漏洞执行代码。
CVSS Information
N/A
Vulnerability Type
N/A