Vulnerabilities > Naver > Cloud Explorer

DATE CVE VULNERABILITY TITLE RISK
2022-06-13 CVE-2022-24077 Uncontrolled Search Path Element vulnerability in Naver Cloud Explorer
Naver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection.
local
naver CWE-427
6.9
2020-03-23 CVE-2020-9752 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Naver Cloud Explorer
Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe.
network
low complexity
naver CWE-610
7.5
2020-03-03 CVE-2020-9751 Download of Code Without Integrity Check vulnerability in Naver Cloud Explorer
Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade.
network
low complexity
naver CWE-494
6.4
2019-09-03 CVE-2019-13156 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Naver Cloud Explorer
NDrive(1.2.2).sys in Naver Cloud Explorer has a stack-based buffer overflow, which allows attackers to cause a denial of service when reading data from IOCTL handle.
network
low complexity
naver CWE-119
5.0