Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-mjr6-9x82-8cgp

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. Successful exploitation could result in a local user with permissions to write to the file system running system commands with administrator privileges.

Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. Successful exploitation could result in a local user with permissions to write to the file system running system commands with administrator privileges.

Ссылки

EPSS

Процентиль: 46%
0.00232
Низкий

CVE ID

CVE-2020-24425

Дефекты

CWE-427

Связанные уязвимости

nvd логотип

CVE-2020-24425

CVSS3: 7.5
nvd
больше 5 лет назад

Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege escalation. Successful exploitation could result in a local user with permissions to write to the file system running system commands with administrator privileges.

fstec логотип

BDU:2020-05150

CVSS3: 7.8
fstec
больше 5 лет назад

Уязвимость HTML-редактора Adobe Dreamweaver, связанная с неконтролируемым элементом пути поиска, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 46%
0.00232
Низкий

CVE ID

CVE-2020-24425

Дефекты

CWE-427