exploitDog

GHSA-f2wx-p9mh-gf54

Опубликовано: 29 июл. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The “ipk” package containing the configuration created by TWinSoft can be uploaded, extracted, and executed in Ovarro TBox, allowing malicious code execution.

The “ipk” package containing the configuration created by TWinSoft can be uploaded, extracted, and executed in Ovarro TBox, allowing malicious code execution.

Ссылки

EPSS

Процентиль: 77%

0.00993

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2021-22646

CVSS3: 8.8

nvd

больше 3 лет назад

The “ipk” package containing the configuration created by TWinSoft can be uploaded, extracted, and executed in Ovarro TBox, allowing malicious code execution.

EPSS

Процентиль: 77%

0.00993

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94