Описание
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the 'Find Computer' feature that allows attackers to execute arbitrary code by overflowing the computer name input field. Attackers can craft a malicious payload that triggers a buffer overflow, enabling code execution and launching calculator as a proof of concept.
EPSS
Процентиль: 3%
0.00017
Низкий
8.4 High
CVSS3
Дефекты
CWE-120
Связанные уязвимости
CVSS3: 8.4
github
8 дней назад
Frigate Professional 3.36.0.9 contains a local buffer overflow vulnerability in the 'Find Computer' feature that allows attackers to execute arbitrary code by overflowing the computer name input field. Attackers can craft a malicious payload that triggers a buffer overflow, enabling code execution and launching calculator as a proof of concept.
EPSS
Процентиль: 3%
0.00017
Низкий
8.4 High
CVSS3
Дефекты
CWE-120