exploitDog

GHSA-qjw9-g27w-ghh4

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.

Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.

Ссылки

EPSS

Процентиль: 34%

0.00137

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-345

Связанные уязвимости

CVE-2018-12333

CVSS3: 8.1

nvd

больше 7 лет назад

Insufficient Verification of Data Authenticity vulnerability in ECOS Secure Boot Stick (aka SBS) 5.6.5 allows an attacker to manipulate security relevant configurations and execute malicious code.

EPSS

Процентиль: 34%

0.00137

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-345