exploitDog

GHSA-jvx3-gq7w-5xv7

Опубликовано: 04 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller.

Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller.

Ссылки

EPSS

Процентиль: 3%

0.00016

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2022-28781

CVSS3: 7.7

nvd

почти 4 года назад

Improper input validation in Settings prior to SMR-May-2022 Release 1 allows attackers to launch arbitrary activity with system privilege. The patch adds proper validation logic to check the caller.

EPSS

Процентиль: 3%

0.00016

Низкий

6.7 Medium

CVSS3

CVE ID

Дефекты

CWE-20