exploitDog

GHSA-38pg-fhjw-6gv5

Опубликовано: 15 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

Ссылки

EPSS

Процентиль: 69%

0.00613

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2022-24387

CVSS3: 9.1

nvd

почти 4 года назад

With administrator or admin privileges the application can be tricked into overwriting files in app_data/Config folder, e.g. the systemsettings.xml file. THis is possible in SmarterTrack v100.0.8019.14010

EPSS

Процентиль: 69%

0.00613

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-434