Описание
In Western Digital WD Discovery before 4.0.251.0, a malicious application running with standard user permissions could potentially execute code in the application's process through library injection by using DYLD environment variables.
Уязвимые конфигурации
Конфигурация 1Версия до 4.0.251.0 (исключая)Версия до 4.0.251.0 (исключая)
Одно из
cpe:2.3:a:westerndigital:wd_discovery:*:*:*:*:*:macos:*:*
cpe:2.3:a:westerndigital:wd_discovery:*:*:*:*:*:windows:*:*
EPSS
Процентиль: 70%
0.0065
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-668
Связанные уязвимости
github
больше 3 лет назад
In Western Digital WD Discovery before 4.0.251.0, a malicious application running with standard user permissions could potentially execute code in the application's process through library injection by using DYLD environment variables.
EPSS
Процентиль: 70%
0.0065
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-668