exploitDog

GHSA-92r7-5f26-m495

Опубликовано: 28 нояб. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 2.4

Описание

The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

Ссылки

EPSS

Процентиль: 10%

0.00035

Низкий

2.4 Low

CVSS4

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2024-46939

nvd

около 1 года назад

The game extension engine of versions 1.2.7.0 and earlier exposes some components, and attackers can construct parameters to perform path traversal attacks, which can overwrite local specific files

EPSS

Процентиль: 10%

0.00035

Низкий

2.4 Low

CVSS4

CVE ID

Дефекты

CWE-22