exploitDog

GHSA-cgpv-8243-q33x

Опубликовано: 08 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.

Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.

Ссылки

EPSS

Процентиль: 24%

0.00078

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-346

Связанные уязвимости

CVE-2023-33443

CVSS3: 9.8

nvd

больше 2 лет назад

Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute arbitrary administrative commands via a crafted payload sent to the desired endpoints.

EPSS

Процентиль: 24%

0.00078

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-346