Remote Code Execution Vulnerability in NBBDownloader.ocx ActiveX Control

Remote Code Execution Vulnerability in NBBDownloader.ocx ActiveX Control

CVE-2020-7850 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

NBBDownloader.ocx ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection.

Learn more about our Web App Pen Testing.