exploitDog

GHSA-pj98-r854-3m4h

Опубликовано: 24 июл. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

A race condition vulnerability exists in the aVideoEncoder.json.php unzip functionality of WWBN AVideo 14.4 and dev master commit 8a8954ff. A series of specially crafted HTTP request can lead to arbitrary code execution.

A race condition vulnerability exists in the aVideoEncoder.json.php unzip functionality of WWBN AVideo 14.4 and dev master commit 8a8954ff. A series of specially crafted HTTP request can lead to arbitrary code execution.

Ссылки

EPSS

Процентиль: 57%

0.00345

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-362

Связанные уязвимости

CVE-2025-25214

CVSS3: 8.8

nvd

7 месяцев назад

A race condition vulnerability exists in the aVideoEncoder.json.php unzip functionality of WWBN AVideo 14.4 and dev master commit 8a8954ff. A series of specially crafted HTTP request can lead to arbitrary code execution.

EPSS

Процентиль: 57%

0.00345

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-362