exploitDog

GHSA-j97j-w85x-cvvq

Опубликовано: 09 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.4

Описание

Jaspersoft Clarity PPM version 14.3.0.298 was discovered to contain an arbitrary file upload vulnerability via the Profile Picture Upload function.

Jaspersoft Clarity PPM version 14.3.0.298 was discovered to contain an arbitrary file upload vulnerability via the Profile Picture Upload function.

Ссылки

EPSS

Процентиль: 34%

0.0014

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-37790

CVSS3: 5.4

nvd

около 2 лет назад

Jaspersoft Clarity PPM version 14.3.0.298 was discovered to contain an arbitrary file upload vulnerability via the Profile Picture Upload function.

EPSS

Процентиль: 34%

0.0014

Низкий

5.4 Medium

CVSS3

CVE ID

Дефекты

CWE-79