exploitDog

GHSA-gg2x-4f8g-8499

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.

An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.

Ссылки

EPSS

Процентиль: 4%

0.0002

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-863

Связанные уязвимости

CVE-2021-25397

CVSS3: 6.8

nvd

больше 4 лет назад

An improper access control vulnerability in TelephonyUI prior to SMR MAY-2021 Release 1 allows local attackers to write arbitrary files of telephony process via untrusted applications.

EPSS

Процентиль: 4%

0.0002

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-863