Vulnerability Description
A vulnerability that can hijack a DLL file that is loaded during products(LGPCSuite_Setup, IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) installation into a DLL file that the hacker wants. Missing Support for Integrity Check vulnerability in ____COMPONENT____ of LG Electronics (LGPCSuite_Setup), (IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) allows ____ATTACKER/ATTACK____ to cause ____IMPACT____. This issue affects: LG Electronics; LGPCSuite_Setup : 1.0.0.3 on Windows(x86, x64); IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup : 1.0.0.9 on Windows(x86, x64).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Lg | Ipsfullhd | 1.0.0.3 |
| Lg | Lg Ultrawide | 1.0.0.3 |
| Lg | Lgpcsuite Setup | 1.0.0.9 |
| Lg | Ultra Hd Driver Setup | 1.0.0.3 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://lgsecurity.lge.com/Vendor Advisory
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35587Third Party Advisory
- https://lgsecurity.lge.com/Vendor Advisory
- https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=35587Third Party Advisory
FAQ
What is CVE-2020-7807?
CVE-2020-7807 is a vulnerability with a CVSS score of 5.6 (MEDIUM). A vulnerability that can hijack a DLL file that is loaded during products(LGPCSuite_Setup, IPSFULLHD, LG_ULTRAWIDE, ULTRA_HD_Driver Setup) installation into a DLL file that the hacker wants. Missing S...
How severe is CVE-2020-7807?
CVE-2020-7807 has been rated MEDIUM with a CVSS base score of 5.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-7807?
Check the references section above for vendor advisories and patch information. Affected products include: Lg Ipsfullhd, Lg Lg Ultrawide, Lg Lgpcsuite Setup, Lg Ultra Hd Driver Setup, Microsoft Windows.