Описание
A Remote Code Execution(RCE) vulnerability exists in some designated applications in ServiSign security plugin, as long as the interface is captured, attackers are able to launch RCE and executes arbitrary command on target system via malicious crafted scripts.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.0.19.0617 (включая)
Одновременно
cpe:2.3:a:changingtec:servisign:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04511
Низкий
8.3 High
CVSS3
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
NVD-CWE-noinfo
Связанные уязвимости
github
больше 3 лет назад
A Remote Code Execution(RCE) vulnerability exists in some designated applications in ServiSign security plugin, as long as the interface is captured, attackers are able to launch RCE and executes arbitrary command on target system via malicious crafted scripts.
EPSS
Процентиль: 89%
0.04511
Низкий
8.3 High
CVSS3
8.8 High
CVSS3
9.3 Critical
CVSS2
Дефекты
NVD-CWE-noinfo