exploitDog

GHSA-jjv8-4r6f-2mj4

Опубликовано: 11 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.6

Описание

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.

Ссылки

EPSS

Процентиль: 5%

0.00022

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-424

CWE-425

Связанные уязвимости

CVE-2022-24932

CVSS3: 4.2

nvd

почти 4 года назад

Improper Protection of Alternate Path vulnerability in Setup wizard process prior to SMR Mar-2022 Release 1 allows physical attacker package installation before finishing Setup wizard.

EPSS

Процентиль: 5%

0.00022

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-424

CWE-425