exploitDog

GHSA-j9wg-rrpv-crp4

Опубликовано: 08 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 6.2

Описание

By changing the filename parameter in the request, an attacker could delete any file with the permissions of the Vuforia server account.

By changing the filename parameter in the request, an attacker could delete any file with the permissions of the Vuforia server account.

Ссылки

EPSS

Процентиль: 6%

0.00024

Низкий

6.2 Medium

CVSS3

CVE ID

Дефекты

CWE-285

Связанные уязвимости

CVE-2023-29152

CVSS3: 6.2

nvd

больше 2 лет назад

By changing the filename parameter in the request, an attacker could delete any file with the permissions of the Vuforia server account.

EPSS

Процентиль: 6%

0.00024

Низкий

6.2 Medium

CVSS3

CVE ID

Дефекты

CWE-285