CVE-2020-7830: Input Validation
First published: Wed Sep 02 2020(Updated: )
RAONWIZ v2018.0.2.50 and earlier versions contains a vulnerability that could allow remote files to be downloaded by lack of validation. Vulnerabilities in downloading with Kupload agent allow files to be downloaded to arbitrary paths due to insufficient verification of extensions and download paths. This issue affects: RAONWIZ RAON KUpload 2018.0.2.50 versions and earlier.
Credit: vuln@krcert.or.kr
| Affected Software | Affected Version | How to fix |
|---|---|---|
| RAONWIZ RAON KUpload | <=2018.0.2.50 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-7830?
CVE-2020-7830 is a vulnerability in RAONWIZ v2018.0.2.50 and earlier versions that allows remote files to be downloaded without proper validation.
What is the severity of CVE-2020-7830?
CVE-2020-7830 has a severity rating of 7.8 (high).
How does CVE-2020-7830 affect RAONWIZ?
CVE-2020-7830 allows attackers to download remote files by exploiting insufficient validation in downloading with Kupload agent in RAONWIZ versions 2018.0.2.50 and earlier.
How can I fix CVE-2020-7830?
To fix CVE-2020-7830, it is recommended to update RAONWIZ to a version that includes the necessary security patches.
Where can I find more information about CVE-2020-7830?
You can find more information about CVE-2020-7830 at the following link: [https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35582](https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35582)
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/raonwiz
- canonical/raonwiz raon kupload
- version/raonwiz raon kupload/2018.0.2.50