Описание
A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. This issue affects: Smilegate STOVE Client 0.0.4.72.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 0.0.4.10 (включая) до 0.0.4.71 (включая)
Одновременно
cpe:2.3:a:onstove:stove:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.0041
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
github
больше 3 лет назад
A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. This issue affects: Smilegate STOVE Client 0.0.4.72.
EPSS
Процентиль: 61%
0.0041
Низкий
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-20
CWE-20