CVE-2022-23766

Description

An improper input validation vulnerability leading to arbitrary file execution was discovered in BigFileAgent. In order to cause arbitrary files to be executed, the attacker makes the victim access a web page d by them or inserts a script using XSS into a general website.

Related CPE's

abigfilebigfileagent********

omicrosoftwindows-*******

References

https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66925

Third Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io