exploitDog

GHSA-8fmw-7mxc-55jq

Опубликовано: 11 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 4.6

Описание

ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads can occur.

ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads can occur.

Ссылки

EPSS

Процентиль: 47%

0.00238

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-286

Связанные уязвимости

CVE-2023-51750

CVSS3: 4.6

nvd

около 2 лет назад

ScaleFusion 10.5.2 does not properly limit users to the Edge application because file downloads can occur. NOTE: the vendor's position is "Not vulnerable if the default Windows device profile configuration is used which utilizes modern management with website allow-listing rules."

EPSS

Процентиль: 47%

0.00238

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-286