Описание
Untrusted search path vulnerability in Installer for Shin Sekiyu Yunyu Chousa Houkoku Data Nyuryoku Program (program released on 2013 September 30) distributed on the website until 2017 May 17 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Ссылки
- Third Party AdvisoryVendor Advisory
- Third Party AdvisoryVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:enecho.meti:shin_sekiyu_yunyu_chousa_houkoku_data_nyuryoku_program:-:*:*:*:*:*:*:*
EPSS
Процентиль: 55%
0.00322
Низкий
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-426
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Untrusted search path vulnerability in Installer for Shin Sekiyu Yunyu Chousa Houkoku Data Nyuryoku Program (program released on 2013 September 30) distributed on the website until 2017 May 17 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
EPSS
Процентиль: 55%
0.00322
Низкий
7.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-426