CVE-2021-44750

Опубликовано: 10 мар. 2022

Источник: nvd

CVSS3: 6.4

CVSS3: 7.3

CVSS2: 8.5

EPSS Низкий

Описание

An arbitrary code execution vulnerability was found in the F-Secure Support Tool. A standard user can craft a special configuration file, which when run by administrator can execute any commands.

Ссылки

https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories
Vendor Advisory
https://www.f-secure.com/en/business/support-and-downloads/security-advisories/cve-2021-44750
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:f-secure:client_security:-:*:*:*:*:*:*:*

cpe:2.3:a:f-secure:countercept:-:*:*:*:*:*:*:*

cpe:2.3:a:f-secure:elements:-:*:*:*:*:*:*:*

cpe:2.3:a:f-secure:email_and_server_security:-:*:*:*:*:*:*:*

cpe:2.3:a:f-secure:server_security:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 47%

0.00239

Низкий

6.4 Medium

CVSS3

7.3 High

CVSS3

8.5 High

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-c462-j9h8-8xrx

CVSS3: 7.3

github

почти 4 года назад

An arbitrary code execution vulnerability was found in the F-Secure Support Tool. A standard user can craft a special configuration file, which when run by administrator can execute any commands.

EPSS

Процентиль: 47%

0.00239

Низкий

6.4 Medium

CVSS3

7.3 High

CVSS3

8.5 High

CVSS2

Дефекты

NVD-CWE-noinfo