Описание
The SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to bypass intended restrictions on ActiveX execution via "instantiation/free attacks."
Ссылки
- PatchUS Government Resource
- Exploit
- PatchUS Government Resource
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:consona:consona_dynamic_agent:-:-:enterprise:*:*:*:*:*
cpe:2.3:a:consona:consona_dynamic_agent:-:-:marketing:*:*:*:*:*
cpe:2.3:a:consona:consona_dynamic_agent:-:-:support:*:*:*:*:*
cpe:2.3:a:consona:consona_live_assistance:*:*:*:*:*:*:*:*
cpe:2.3:a:consona:consona_subscriber_assistance:*:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03209
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
The SdcWebSecureBase interface in tgctlcm.dll in Consona Live Assistance, Dynamic Agent, and Subscriber Assistance allows remote attackers to bypass intended restrictions on ActiveX execution via "instantiation/free attacks."
EPSS
Процентиль: 87%
0.03209
Низкий
9.3 Critical
CVSS2
Дефекты
CWE-264