exploitDog

CVE-2020-5555

Опубликовано: 25 мар. 2020

Источник: nvd

CVSS3: 9.1

CVSS2: 6.4

EPSS Низкий

Описание

Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper input validation issue.

Ссылки

https://jvn.jp/en/jp/JVN32415420/index.html
Third Party Advisory
https://jvn.jp/en/jp/JVN32415420/index.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:shihonkanri_plus_goout_project:shihonkanri_plus_goout:1.5.8:*:*:*:*:*:*:*

cpe:2.3:a:shihonkanri_plus_goout_project:shihonkanri_plus_goout:2.2.10:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00389

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

GHSA-r4j8-gm27-2hj6

github

больше 3 лет назад

Shihonkanri Plus GOOUT Ver1.5.8 and Ver2.2.10 allows remote attackers to read and write data of the files placed in the same directory where it is placed via unspecified vector due to the improper input validation issue.

EPSS

Процентиль: 59%

0.00389

Низкий

9.1 Critical

CVSS3

6.4 Medium

CVSS2

Дефекты

CWE-20