GHSA-ppp2-fxjc-67f9

Опубликовано: 27 июн. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Stormshield Endpoint Security Evolution 2.0.0 through 2.3.2 has Insecure Permissions. An interactive user can use the SES Evolution agent to create arbitrary files with local system privileges.

Ссылки

EPSS

Процентиль: 6%

0.00026

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-35799

Дефекты

CWE-732

Связанные уязвимости

CVE-2023-35799

CVSS3: 5.5

ubuntu

больше 2 лет назад

Stormshield Endpoint Security Evolution 2.0.0 through 2.3.2 has Insecure Permissions. An interactive user can use the SES Evolution agent to create arbitrary files with local system privileges.

CVE-2023-35799

CVSS3: 5.5

nvd

больше 2 лет назад

Stormshield Endpoint Security Evolution 2.0.0 through 2.3.2 has Insecure Permissions. An interactive user can use the SES Evolution agent to create arbitrary files with local system privileges.

EPSS

Процентиль: 6%

0.00026

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2023-35799

Дефекты

CWE-732