Remote Code Execution Vulnerability in IGSS Definition (Def.exe) Version 14.0.0.20247 and Prior

Remote Code Execution Vulnerability in IGSS Definition (Def.exe) Version 14.0.0.20247 and Prior

CVE-2020-7550 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 and prior that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

Learn more about our Web Application Penetration Testing UK.