Описание
Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user triggering incompatible type errors because the resource does not have expected properties. This may lead to remote code execution.
Ссылки
- Third Party AdvisoryVDB Entry
- Mailing ListPatchThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Mailing ListPatchThird Party AdvisoryUS Government Resource
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до 7.3.0.0 (включая)
cpe:2.3:a:panasonic:control_fpwin_pro:*:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00684
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-843
CWE-843
Связанные уязвимости
github
больше 3 лет назад
Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user triggering incompatible type errors because the resource does not have expected properties. This may lead to remote code execution.
EPSS
Процентиль: 71%
0.00684
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-843
CWE-843