exploitDog

GHSA-23v7-v5p9-cqr9

Опубликовано: 21 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS4: 8.7

CVSS3: 8.8

Описание

The EAI developed by Digiwin has a Privilege Escalation vulnerability, allowing remote attackers with regular privileges to elevate their privileges to administrator level via a specific API.

The EAI developed by Digiwin has a Privilege Escalation vulnerability, allowing remote attackers with regular privileges to elevate their privileges to administrator level via a specific API.

Ссылки

EPSS

Процентиль: 30%

0.00107

Низкий

8.7 High

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-648

Связанные уязвимости

CVE-2025-7344

CVSS3: 8.8

nvd

17 дней назад

The EAI developed by Digiwin has a Privilege Escalation vulnerability, allowing remote attackers with regular privileges to elevate their privileges to administrator level via a specific API.

EPSS

Процентиль: 30%

0.00107

Низкий

8.7 High

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-648