exploitDog

GHSA-xc62-vv2q-247g

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update.

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update.

Ссылки

EPSS

Процентиль: 61%

0.00409

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-494

CWE-94

Связанные уязвимости

CVE-2008-3324

CVSS3: 8.1

nvd

больше 17 лет назад

The PartyGaming PartyPoker client program 121/120 does not properly verify the authenticity of updates, which allows remote man-in-the-middle attackers to execute arbitrary code via a Trojan horse update.

EPSS

Процентиль: 61%

0.00409

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-494

CWE-94