A vulnerability of uPrism.io CURIX(Video conferecing solution) could allow an unauthenticated attacker to execute arbitrary code. This vulnerability is due to insufficient input(server domain) validation. An attacker could exploit this vulnerability through crafted URL.
References
Link | Resource |
---|---|
https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35903 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: krcert
Published: 2021-02-17T13:25:31
Updated: 2021-02-17T13:25:31
Reserved: 2020-01-22T00:00:00
Link: CVE-2020-7849
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-02-17T14:15:18.733
Modified: 2021-02-23T14:50:43.310
Link: CVE-2020-7849
JSON object: View
Redhat Information
No data.
CWE