CVE-2025-7620 HIGH

CVE-2025-7620: DSIC|Cross-browser Components for Official Document Creation - Remote Code Execution

Vendor Dsic
Product Cross-browser Components for Official Document Creation
Weakness CWE-494 · Download without integrity check
Published July 14, 2025
Last update July 14, 2025

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

The cross-browser document creation component produced by Digitware System Integration Corporation has a Remote Code Execution vulnerability. If a user visits a malicious website while the component is active, remote attackers can cause the system to download and execute arbitrary programs.

Key dates

02Disclosure timeline

July 14, 2025 CVE published
July 14, 2025 Record updated