CVE-2020-7803

HIGH

IMGTech Co,Ltd Zoneplayer <2.0.1.4 - RCE

Title source: llm
STIX 2.1

Description

IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to cause arbitrary code execution.

References (2)

Core 2
Core References
Product, Vendor Advisory x_refsource_confirm
http://www.zoneplayer.co.kr/

Scores

CVSS v3 7.8
EPSS 0.0117
EPSS Percentile 63.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-20
Status published
Products (2)
imgtech/zoneplayer 2.0.1.3
imgtech/zoneplayer 2.0.1.4
Published May 07, 2020
Tracked Since Feb 18, 2026