Vulnerabilities > Naver > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-07-19 CVE-2021-33592 Unspecified vulnerability in Naver Toolbar
NAVER Toolbar before 4.0.30.323 allows remote attackers to execute arbitrary code via a crafted upgrade.xml file.
network
low complexity
naver
critical
9.8
2020-05-20 CVE-2020-9753 Improper Verification of Cryptographic Signature vulnerability in Naver Whale Browser Installer
Whale Browser Installer before 1.2.0.5 versions don't support signature verification for Flash installer.
network
low complexity
naver CWE-347
critical
9.1
2020-03-23 CVE-2020-9752 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Naver Cloud Explorer
Naver Cloud Explorer before 2.2.2.11 allows the attacker can move a local file in any path on the filesystem as a system privilege through its named pipe.
network
low complexity
naver CWE-610
critical
9.8
2020-03-03 CVE-2020-9751 Download of Code Without Integrity Check vulnerability in Naver Cloud Explorer
Naver Cloud Explorer before 2.2.2.11 allows the system to download an arbitrary file from the attacker's server and execute it during the upgrade.
network
low complexity
naver CWE-494
critical
9.1