exploitDog

GHSA-6vqp-97x2-9w68

Опубликовано: 07 мая 2025

Источник: github

Github: Не прошло ревью

CVSS3: 6.1

Описание

Improper handling of insufficient permission in PackageInstallerCN prior to version 15.0.11.0 allows local attacker to bypass user interaction for requested installation.

Improper handling of insufficient permission in PackageInstallerCN prior to version 15.0.11.0 allows local attacker to bypass user interaction for requested installation.

Ссылки

EPSS

Процентиль: 6%

0.00024

Низкий

6.1 Medium

CVSS3

CVE ID

Связанные уязвимости

CVE-2025-20974

CVSS3: 6.1

nvd

9 месяцев назад

Improper handling of insufficient permission in PackageInstallerCN prior to version 15.0.11.0 allows local attacker to bypass user interaction for requested installation.

EPSS

Процентиль: 6%

0.00024

Низкий

6.1 Medium

CVSS3

CVE ID