exploitDog

GHSA-88pw-4rw2-v435

Опубликовано: 19 янв. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

SoftVibe SARABAN for INFOMA 1.1 allows Unauthenticated unrestricted File Upload, that allows attackers to upload files with any file extension which can lead to arbitrary code execution.

SoftVibe SARABAN for INFOMA 1.1 allows Unauthenticated unrestricted File Upload, that allows attackers to upload files with any file extension which can lead to arbitrary code execution.

Ссылки

EPSS

Процентиль: 81%

0.01555

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2021-38697

CVSS3: 9.8

nvd

около 4 лет назад

SoftVibe SARABAN for INFOMA 1.1 allows Unauthenticated unrestricted File Upload, that allows attackers to upload files with any file extension which can lead to arbitrary code execution.

EPSS

Процентиль: 81%

0.01555

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-434