Vulnerabilities > Handysoft

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-19	CVE-2021-26630	Improper Input Validation vulnerability in Handysoft Groupware Improper input validation vulnerability in HANDY Groupware’s ActiveX moudle allows attackers to download or execute arbitrary files. network low complexity handysoft CWE-20 critical	9.8
2021-09-09	CVE-2021-26608	Insufficient Verification of Data Authenticity vulnerability in Handysoft Hshell 1.7.4.5/2.0.3.5/4.0.1.6 An arbitrary file download and execution vulnerability was found in the HShell.dll of handysoft Co., Ltd groupware ActiveX module. network low complexity handysoft CWE-345 critical	9.8
2020-08-07	CVE-2020-7810	Improper Validation of Integrity Check Value vulnerability in Handysoft Hslogin2.Dll 6.7.8.4/7.3.4 hslogin2.dll ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. network low complexity handysoft CWE-354	8.8
2020-04-29	CVE-2020-7804	OS Command Injection vulnerability in Handysoft Groupware 1.7.3.1 ActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for Windows 7, 8, and 10 allows an attacker to execute arbitrary command via the ShellExec method. network low complexity handysoft CWE-78	7.2

Vulnerabilities > Handysoft {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Handysoft"}]}