CVE-2020-12483

Опубликовано: 23 мар. 2021

Источник: nvd

CVSS3: 8.2

CVSS3: 6.1

CVSS2: 5.8

EPSS Низкий

Описание

The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters.

Ссылки

https://www.vivo.com/en/support/security-advisory-detail?id=1
Vendor Advisory
https://www.vivo.com/en/support/security-advisory-detail?id=1
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:vivo:appstore:*:*:*:*:*:*:*:*

Версия до 8.12.0.0 (исключая)

EPSS

Процентиль: 46%

0.0023

Низкий

8.2 High

CVSS3

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601

Связанные уязвимости

GHSA-fp5r-v55q-wgx7

github

больше 3 лет назад

The appstore before 8.12.0.0 exposes some of its components, and the attacker can cause remote download and install apps through carefully constructed parameters.

EPSS

Процентиль: 46%

0.0023

Низкий

8.2 High

CVSS3

6.1 Medium

CVSS3

5.8 Medium

CVSS2

Дефекты

CWE-601