exploitDog

GHSA-q6mp-f7c6-gwcv

Опубликовано: 27 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 7

CVSS3: 8.8

Описание

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory.

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory.

Ссылки

EPSS

Процентиль: 5%

0.00021

Низкий

7 High

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-732

Связанные уязвимости

CVE-2020-36938

CVSS3: 8.8

nvd

12 дней назад

WinAVR version 20100110 contains an insecure permissions vulnerability that allows authenticated users to modify system files and executables. Attackers can leverage the overly permissive access controls to potentially modify critical DLLs and executable files in the WinAVR installation directory.

EPSS

Процентиль: 5%

0.00021

Низкий

7 High

CVSS4

8.8 High

CVSS3

CVE ID

Дефекты

CWE-732