CVE-2020-8289

Posted on 2020년 12월 27일2020년 12월 27일 by admin

CVE-2020-8289

Backblaze for Windows before 7.0.1.433 and Backblaze for macOS before 7.0.1.434 suffer from improper certificate validation in `bztransmit` helper due to hardcoded whitelist of strings in URLs where validation is disabled leading to possible remote code execution via client update functionality.

Source: CVE-2020-8289

답글 남기기 응답 취소