Описание
See.sys, up to version 4.25, in SoftEther VPN Server versions 4.29 or older, allows a user to call an IOCTL specifying any kernel address to which arbitrary bytes are written to.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.25 (включая)
cpe:2.3:a:softether:see.sys:*:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00128
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
See.sys through 4.25 in the SoftEther VPN Server allows a user to specify any kernel address to which arbitrary bytes are written.
EPSS
Процентиль: 33%
0.00128
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-787