exploitDog

GHSA-p5q6-j3pf-jwc7

Опубликовано: 28 янв. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings.

Ссылки

EPSS

Процентиль: 95%

0.16278

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2024-23742

CVSS3: 9.8

nvd

около 2 лет назад

An issue in Loom on macOS version 0.196.1 and before, allows remote attackers to execute arbitrary code via the RunAsNode and enableNodeClilnspectArguments settings. NOTE: the vendor disputes this because it requires local access to a victim's machine.

EPSS

Процентиль: 95%

0.16278

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-94