CHT Security Red Team Discovered Vulnerability in Well-Known Note Management Software

Summary

Vulnerability List

[CVE-2022-36450] – Improper Input Validation

Details

1. Improper Input Validation

Description

There is a parameter affected by Improper Input Validation in specific function.

Impact

Attackers could execute arbitrary remote program with this vulnerability, leading to remote code execution. 

Known Affected Software

• 0.14.3 < 0.15.5

Credits

• Xin-Yue, Song (CHT Security)