exploitDog

GHSA-w3cr-3qxm-287x

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.

The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.

Ссылки

EPSS

Процентиль: 61%

0.00409

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-2367

nvd

больше 11 лет назад

The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.

EPSS

Процентиль: 61%

0.00409

Низкий

CVE ID

Дефекты

CWE-200