exploitDog

GHSA-6m5m-3phv-f8fm

Опубликовано: 07 мар. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue in Docmosis Tornado v.2.9.7 and before allows a remote attacker to execute arbitrary code via a crafted script to the UNC path input

An issue in Docmosis Tornado v.2.9.7 and before allows a remote attacker to execute arbitrary code via a crafted script to the UNC path input

Ссылки

EPSS

Процентиль: 83%

0.0188

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2024-42733

CVSS3: 9.8

nvd

11 месяцев назад

An issue in Docmosis Tornado v.2.9.7 and before allows a remote attacker to execute arbitrary code via a crafted script to the UNC path input

EPSS

Процентиль: 83%

0.0188

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94