NeoRS ActiveX Module Origin Validation Error Vulnerability: Arbitrary File Download and Execution

NeoRS ActiveX Module Origin Validation Error Vulnerability: Arbitrary File Download and Execution

CVE-2022-23763 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Origin validation error vulnerability in NeoRS’s ActiveX moudle allows attackers to download and execute arbitrary files. Remote attackers can use this vulerability to encourage users to access crafted web pages, causing damage such as malicious code infections.

Learn more about our Web App Pen Testing.