Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7jm9-9v8c-m25j

Опубликовано: 14 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 7.8

Описание

NASA Singledop version v1.0 contains a CWE-502 vulnerability in NASA Singledop library (Weather data) that can result in remote code execution. This attack appear to be exploitable via Victim opening a specially crafted radar data file. This vulnerability appears to have been fixed in v1.1.

NASA Singledop version v1.0 contains a CWE-502 vulnerability in NASA Singledop library (Weather data) that can result in remote code execution. This attack appear to be exploitable via Victim opening a specially crafted radar data file. This vulnerability appears to have been fixed in v1.1.

Ссылки

EPSS

Процентиль: 68%
0.00578
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-1000045

Дефекты

CWE-502

Связанные уязвимости

nvd логотип

CVE-2018-1000045

CVSS3: 7.8
nvd
почти 8 лет назад

NASA Singledop version v1.0 contains a CWE-502 vulnerability in NASA Singledop library (Weather data) that can result in remote code execution. This attack appear to be exploitable via Victim opening a specially crafted radar data file. This vulnerability appears to have been fixed in v1.1.

EPSS

Процентиль: 68%
0.00578
Низкий

7.8 High

CVSS3

CVE ID

CVE-2018-1000045

Дефекты

CWE-502