PT-2017-15220 · Vivaldi · Vivaldi
Eiji James Yoshida
·
Published
2017-04-28
·
Updated
2017-05-11
·
CVE-2017-2156
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Vivaldi versions prior to 1.7.735.48
Description
The issue concerns an untrusted search path vulnerability in the Vivaldi installer for Windows. This vulnerability allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory.
Recommendations
For versions prior to 1.7.735.48, update to version 1.7.735.48 or later to resolve the issue.
Fix
Untrusted Search Path
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vivaldi