exploitDog

GHSA-7f6x-229m-7w2q

Опубликовано: 03 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An attacker could utilize SQL commands to create a new user MDT AutoSave versions prior to v6.02.06 and update the user’s permissions, granting the attacker the ability to login.

An attacker could utilize SQL commands to create a new user MDT AutoSave versions prior to v6.02.06 and update the user’s permissions, granting the attacker the ability to login.

Ссылки

EPSS

Процентиль: 45%

0.00224

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-32953

CVSS3: 9.8

nvd

почти 4 года назад

An attacker could utilize SQL commands to create a new user MDT AutoSave versions prior to v6.02.06 and update the user’s permissions, granting the attacker the ability to login.

EPSS

Процентиль: 45%

0.00224

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89