exploitDog

GHSA-jxff-ff33-h6fp

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

UiPath Orchestrator through 2018.2.4 allows any authenticated user to change the information of arbitrary users (even administrators) leading to privilege escalation and remote code execution.

UiPath Orchestrator through 2018.2.4 allows any authenticated user to change the information of arbitrary users (even administrators) leading to privilege escalation and remote code execution.

Ссылки

EPSS

Процентиль: 82%

0.01805

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2018-17305

CVSS3: 8.8

nvd

почти 7 лет назад

UiPath Orchestrator through 2018.2.4 allows any authenticated user to change the information of arbitrary users (even administrators) leading to privilege escalation and remote code execution.

EPSS

Процентиль: 82%

0.01805

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-732