Описание
Untrusted search path vulnerability in Installer of "Setup file of advance preparation" (jizen_setup.exe) (The version which was available on the website prior to 2017 June 12) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до - (включая)
cpe:2.3:a:e-tax.nta:e-tax:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.0028
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-426
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Untrusted search path vulnerability in Installer of "Setup file of advance preparation" (jizen_setup.exe) (The version which was available on the website prior to 2017 June 12) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
EPSS
Процентиль: 51%
0.0028
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-426