Vulnerabilities (CVE)

Filtered by vendor Navercorp Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-12449	1 Navercorp	1 Whale	2019-10-09	6.8 MEDIUM	7.8 HIGH
The Whale browser installer 0.4.3.0 and earlier versions allows DLL hijacking.
CVE-2018-9859	1 Navercorp	1 Whale	2019-10-03	5.1 MEDIUM	8.1 HIGH
The path of Whale update service was unquoted in NAVER Whale before 1.0.40.7. This vulnerability can be used for persistent privilege escalation if it's available to create an executable file with System privilege by other vulnerable applications.
CVE-2017-15913	1 Navercorp	1 Whale	2018-06-16	6.8 MEDIUM	7.8 HIGH
The Installer in Whale allows DLL hijacking.