Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TOBESOFT NEXACRO17 arbitrary command execution vulnerability
Vulnerability Description
An Improper input validation in execDefaultBrowser method of NEXACRO17 allows a remote attacker to execute arbitrary command on affected systems.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
输入验证不恰当
Vulnerability Title
NEXACRO17 输入验证错误漏洞
Vulnerability Description
Tobesoft Nexacro17是韩国Tobesoft公司的一套基于统一框架的 Osmu (单来源多用途)应用程序开发解决方案。 NEXACRO17存在安全漏洞,该漏洞允许远程攻击者可利用该漏洞在受影响的系统上执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A