Vulnerabilities > CVE-2021-21958 - Out-of-bounds Write vulnerability in Hancom Office 2020 11.0.0.2353

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL

Summary

A heap-based buffer overflow vulnerability exists in the Hword HwordApp.dll functionality of Hancom Office 2020 11.0.0.2353. A specially-crafted malformed file can lead to memory corruption and potential arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

Vulnerable Configurations

Part Description Count
Application
Hancom
1

Common Weakness Enumeration (CWE)