exploitDog

CVE-2021-39373

Опубликовано: 01 сент. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 4.6

EPSS Низкий

Описание

Samsung Drive Manager 2.0.104 on Samsung H3 devices allows attackers to bypass intended access controls on disk management. WideCharToMultiByte, WideCharStr, and MultiByteStr can contribute to password exposure.

Ссылки

https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-j3f7-346q-97f4
Exploit
Third Party Advisory
https://github.com/bosslabdcu/Vulnerability-Reporting/security/advisories/GHSA-j3f7-346q-97f4
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:samsung:drive_manager:2.0.104:*:*:*:*:*:*:*

cpe:2.3:h:samsung:h3:-:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00047

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-522

EPSS

Процентиль: 15%

0.00047

Низкий

7.8 High

CVSS3

4.6 Medium

CVSS2

Дефекты

CWE-522