GHSA-mfwf-2cj2-j29m

Опубликовано: 21 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 6.7

Описание

Private Internet Access v3.3 contains an unquoted service path which allows attackers to escalate privileges to the system level.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2022-27092
https://www.exploit-db.com/exploits/50804

6.7 Medium

CVSS3

CVE ID

CVE-2022-27092

Дефекты

CWE-428

Связанные уязвимости

CVE-2022-27092

nvd

больше 3 лет назад

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none

6.7 Medium

CVSS3

CVE ID

CVE-2022-27092

Дефекты

CWE-428