Hancom : Security Vulnerabilities, CVEs, (Directory traversal) CVSS score >= 8
Using the parameter of getPFXFolderList function, attackers can see the information of authorization certification and delete the files. It occurs because the parameter contains path traversal characters(ie. '../../../')
Max CVSS
9.1
EPSS Score
0.16%
Published
2021-11-22
Updated
2021-11-26
1 vulnerabilities found