Improper Control of Program Execution in RevoWorks Browser by JSCom
CVE-2021-20790

9.6CRITICAL

Key Information:

Vendor: J’s Communication Co., Ltd.
Status: Revoworks Browser
Vendor: CVE Published:; 17 September 2021

🔔 Create J’s Communication Co., Ltd. Vulnerability Alert

What is CVE-2021-20790?

An improper control of program execution vulnerability in RevoWorks Browser versions up to 2.1.230 allows attackers to execute arbitrary commands or code through unspecified vectors, potentially compromising system security. This vulnerability could expose users to significant risks, enabling unauthorized access or control over the affected systems.

Affected Version(s)

RevoWorks Browser 2.1.230 and earlier

References

https://jscom.jp/news-20210910_2/

x_refsource_MISC

https://jvn.jp/en/jp/JVN81658818/index.html

x_refsource_MISC

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2021
Vulnerability Reserved
Dec 17, 2020

CVE-2021-20790 Data

JSON