Описание
A vulnerability was found in InnoSetup Installer. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled search path. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Ссылки
- ExploitMailing ListThird Party Advisory
- Third Party Advisory
- ExploitMailing ListThird Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:jrsoftware:inno_setup:-:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00219
Низкий
6.3 Medium
CVSS3
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-427
CWE-427
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
A vulnerability was found in InnoSetup Installer. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to uncontrolled search path. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 44%
0.00219
Низкий
6.3 Medium
CVSS3
7.8 High
CVSS3
4.4 Medium
CVSS2
Дефекты
CWE-427
CWE-427