CVE-2024-50307

Name of the Vulnerable Software and Affected Versions: Chatwork Desktop Application (Windows) versions prior to 2.9.2

Description: A use of potentially dangerous function issue exists in the application. If a user clicks a specially crafted link, an arbitrary file may be downloaded from an external website and executed, resulting in arbitrary code execution on the device.

Recommendations: For versions prior to 2.9.2, update to version 2.9.2 or later to resolve the issue. As a temporary workaround, consider avoiding clicks on links from untrusted sources within the application until the update is applied.