CVE-2020-24162

HIGH

Shenzhen Tencent app <5.8.2.5300 - Code Injection

Title source: llm

Description

The Shenzhen Tencent app 5.8.2.5300 for PC platforms (from Tencent App Center) has a DLL hijacking vulnerability. Attackers can use this vulnerability to execute malicious code.

References (1)

[Third Party Advisory] https://www.cnvd.org.cn/flaw/show/2105399

Scores

CVSS v3 7.8

EPSS 0.0006

EPSS Percentile 18.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (1)

tencent/tencent

Timeline

Published Sep 03, 2020

Tracked Since Feb 18, 2026