exploitDog

GHSA-wr3g-x329-q53c

Опубликовано: 04 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.6

Описание

Improper access control vulnerability in Contents To Window prior to SMR May-2022 Release 1 allows physical attacker to install package before completion of Setup wizard. The patch blocks entry point of the vulnerability.

Improper access control vulnerability in Contents To Window prior to SMR May-2022 Release 1 allows physical attacker to install package before completion of Setup wizard. The patch blocks entry point of the vulnerability.

Ссылки

EPSS

Процентиль: 4%

0.00019

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-424

CWE-863

Связанные уязвимости

CVE-2022-28782

CVSS3: 4.6

nvd

почти 4 года назад

Improper access control vulnerability in Contents To Window prior to SMR May-2022 Release 1 allows physical attacker to install package before completion of Setup wizard. The patch blocks entry point of the vulnerability.

EPSS

Процентиль: 4%

0.00019

Низкий

4.6 Medium

CVSS3

CVE ID

Дефекты

CWE-424

CWE-863