Описание
In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could potentially lead to code execution.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.7.5 (включая)Версия от 6.8.4 (включая) до 6.8.8 (включая)
Одно из
cpe:2.3:a:code42:code42:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:code42:code42:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:code42:code42:7.0.0:*:*:*:enterprise:*:*:*
EPSS
Процентиль: 78%
0.01132
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-434
Связанные уязвимости
github
больше 3 лет назад
In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and executed. This vulnerability could allow an attacker to create directories and save files on Code42 servers, which could potentially lead to code execution.
EPSS
Процентиль: 78%
0.01132
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-434