exploitDog

GHSA-x2m4-5rqp-rhvq

Опубликовано: 08 апр. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Insecure Direct Object Reference (IDOR) in GNU Savane v.3.12 and before allows a remote attacker to delete arbitrary files via crafted input to the trackers_data_delete_file function.

Insecure Direct Object Reference (IDOR) in GNU Savane v.3.12 and before allows a remote attacker to delete arbitrary files via crafted input to the trackers_data_delete_file function.

Ссылки

EPSS

Процентиль: 74%

0.00835

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639

Связанные уязвимости

CVE-2024-27630

CVSS3: 7.5

nvd

почти 2 года назад

Insecure Direct Object Reference (IDOR) in GNU Savane v.3.12 and before allows a remote attacker to delete arbitrary files via crafted input to the trackers_data_delete_file function.

EPSS

Процентиль: 74%

0.00835

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-639