Yes24ViewerX ActiveX Control 1.0.327.50126 and earlier versions contains a vulnerability that could allow remote attackers to download and execute arbitrary files by setting the arguments to the ActiveX method. This can be leveraged for code execution.
[
{
"product": "YES24 PC VIEWER",
"vendor": "YES24",
"versions": [
{
"status": "affected",
"version": "1.0.327.50126"
}
]
}
]