A vulnerability exists that could allow the execution of operating system commands on systems running MiPlatform 2019.05.16 and earlier. An attacker could execute arbitrary remote command by sending parameters to WinExec function in ExtCommandApi.dll module of MiPlatform.
References
Link | Resource |
---|---|
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35509 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: krcert
Published: 2020-07-15T00:00:00
Updated: 2020-07-17T15:13:14
Reserved: 2020-01-22T00:00:00
Link: CVE-2020-7825
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-07-17T16:15:11.637
Modified: 2020-07-23T16:44:57.933
Link: CVE-2020-7825
JSON object: View
Redhat Information
No data.
CWE