exploitDog

CVE-2019-18349

Опубликовано: 21 нояб. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

HotkeyP through 4.9 r96 allows privilege escalation in the privilege function in Commands.cpp.

Ссылки

https://gist.github.com/matt-thibodeau/8bf16bba4c2a13978ed4e5fd08fbe2c2
Exploit
Third Party Advisory
https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/WhatsNew.txt
Release Notes
Third Party Advisory
https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/source/Commands.cpp
Third Party Advisory
https://gist.github.com/matt-thibodeau/8bf16bba4c2a13978ed4e5fd08fbe2c2
Exploit
Third Party Advisory
https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/WhatsNew.txt
Release Notes
Third Party Advisory
https://sourceforge.net/p/hotkeyp/code/HEAD/tree/trunk/source/Commands.cpp
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:hotkeyp_project:hotkeyp:*:*:*:*:*:*:*:*

Версия до 4.8.3 (включая)

cpe:2.3:a:hotkeyp_project:hotkeyp:4.9:*:*:*:*:*:*:*

cpe:2.3:a:hotkeyp_project:hotkeyp:4.9:r96:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.0051

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-5q3q-v4x7-mc35

github

больше 3 лет назад

HotkeyP through 4.9 r96 allows privilege escalation in the privilege function in Commands.cpp.

EPSS

Процентиль: 66%

0.0051

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-noinfo