exploitDog

GHSA-v33q-grx6-58x9

Опубликовано: 10 нояб. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path.

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-427

Связанные уязвимости

CVE-2022-43310

CVSS3: 7.8

nvd

около 3 лет назад

An Uncontrolled Search Path Element in Foxit Software released Foxit Reader v11.2.118.51569 allows attackers to escalate privileges when searching for DLL libraries without specifying an absolute path.

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-427