Описание
Redgate .NET Reflector before 10.0.7.774 and SmartAssembly before 6.12.5 allow attackers to execute code by decompiling a compiled .NET object (such as a DLL or EXE file) with a specific embedded resource file.
Ссылки
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- ExploitThird Party Advisory
- Release NotesVendor Advisory
- Release NotesVendor Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 10.0.7.774 (исключая)Версия до 6.12.5 (исключая)
Одно из
cpe:2.3:a:red-gate:.net_reflector:*:*:*:*:*:*:*:*
cpe:2.3:a:red-gate:smartassembly:*:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.0041
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Redgate .NET Reflector before 10.0.7.774 and SmartAssembly before 6.12.5 allow attackers to execute code by decompiling a compiled .NET object (such as a DLL or EXE file) with a specific embedded resource file.
EPSS
Процентиль: 61%
0.0041
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-20