Описание
Tran Tu Air Sender v1.0.2 was discovered to contain an arbitrary file upload vulnerability in the upload module. This vulnerability allows attackers to execute arbitrary code via a crafted file.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:air_sender_project:air_sender:1.0.2:*:*:*:*:iphone_os:*:*
EPSS
Процентиль: 76%
0.00932
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
github
больше 3 лет назад
Tran Tu Air Sender v1.0.2 was discovered to contain an arbitrary file upload vulnerability in the upload module. This vulnerability allows attackers to execute arbitrary code via a crafted file.
EPSS
Процентиль: 76%
0.00932
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-434