exploitDog

GHSA-w7rq-mwf7-vprq

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

In Schneider Electric U.motion Builder software versions prior to v1.3.4, this vulnerability is due to improper validation of input of context parameter in HTTP GET request.

In Schneider Electric U.motion Builder software versions prior to v1.3.4, this vulnerability is due to improper validation of input of context parameter in HTTP GET request.

Ссылки

EPSS

Процентиль: 43%

0.00208

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-7787

CVSS3: 5.3

nvd

больше 7 лет назад

In Schneider Electric U.motion Builder software versions prior to v1.3.4, this vulnerability is due to improper validation of input of context parameter in HTTP GET request.

EPSS

Процентиль: 43%

0.00208

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-20