Origin validation error vulnerability in NeoRS’s ActiveX moudle allows attackers to download and execute arbitrary files. Remote attackers can use this vulerability to encourage users to access crafted web pages, causing damage such as malicious code infections.
References
Link | Resource |
---|---|
https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66788 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
11 Jul 2022, 15:20
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-346 | |
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:douzone:neors:*:*:*:*:*:*:*:* |
|
First Time |
Microsoft
Microsoft windows Douzone Douzone neors |
|
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 8.8 |
References | (MISC) https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66788 - Third Party Advisory |
28 Jun 2022, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-06-28 14:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-23763
Mitre link : CVE-2022-23763
CVE.ORG link : CVE-2022-23763
JSON object : View
Products Affected
douzone
- neors
microsoft
- windows
CWE
CWE-346
Origin Validation Error