Описание
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler (SEH) and uses an egghunter technique to execute a reverse shell payload.
EPSS
Процентиль: 3%
0.00017
Низкий
8.4 High
CVSS3
Дефекты
CWE-121
Связанные уязвимости
CVSS3: 8.4
github
9 дней назад
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the Pack File feature that allows attackers to execute arbitrary code by overflowing the 'Archive To' input field. Attackers can craft a malicious payload that overwrites the Structured Exception Handler (SEH) and uses an egghunter technique to execute a reverse shell payload.
EPSS
Процентиль: 3%
0.00017
Низкий
8.4 High
CVSS3
Дефекты
CWE-121