CVE Daily

CVE-2020-7878

An arbitrary file download and execution vulnerability was found in the VideoOff...

Critical CVSS 9.8

Overview

An arbitrary file download and execution vulnerability was found in the VideoOffice X2.9 and earlier versions (CVE-2020-7878). This issue is due to missing support for integrity check.

CWE: CWE-353 Published: 2021-12-28T20:15:08.163
Risk analysis

This vulnerability is rated 🔴 CRITICAL.

  • CVSS: 9.8 (CRITICAL)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags