Remote Code Execution Vulnerability in IGSS Definition (Def.exe) v14.0.0.20247 via Malicious CGF File Import

Remote Code Execution Vulnerability in IGSS Definition (Def.exe) v14.0.0.20247 via Malicious CGF File Import

CVE-2020-7556 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

A CWE-787 Out-of-bounds Write vulnerability exists in IGSS Definition (Def.exe) version 14.0.0.20247 that could cause Remote Code Execution when malicious CGF (Configuration Group File) file is imported to IGSS Definition.

Learn more about our Web Application Penetration Testing UK.