exploitDog

GHSA-97fh-7m8x-9fcg

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.5

Описание

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads.

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads.

Ссылки

EPSS

Процентиль: 54%

0.00311

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-9072

CVSS3: 6.5

nvd

около 7 лет назад

In versions prior to 5.5, LXCI for VMware allows an authenticated user to download any system file due to insufficient input sanitization during file downloads.

EPSS

Процентиль: 54%

0.00311

Низкий

6.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20