exploitDog

GHSA-w5jp-93v7-x9q3

Опубликовано: 22 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code.

MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code.

Ссылки

EPSS

Процентиль: 84%

0.02316

Низкий

CVE ID

Дефекты

CWE-798

Связанные уязвимости

CVE-2022-22928

CVSS3: 9.8

nvd

около 4 лет назад

MCMS v5.2.4 was discovered to have a hardcoded shiro-key, allowing attackers to exploit the key and execute arbitrary code.

EPSS

Процентиль: 84%

0.02316

Низкий

CVE ID

Дефекты

CWE-798