exploitDog

CVE-2022-39032

Опубликовано: 28 сент. 2022

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Smart eVision has an improper privilege management vulnerability. A remote attacker with general user privilege can exploit this vulnerability to escalate to administrator privilege, and then perform arbitrary system command or disrupt service.

Ссылки

https://www.twcert.org.tw/tw/cp-132-6569-9fcf4-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-6569-9fcf4-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:lcnet:smart_evision:2022.02.21:*:*:*:*:*:*:*

EPSS

Процентиль: 68%

0.00581

Низкий

8.8 High

CVSS3

Дефекты

CWE-269

CWE-269

Связанные уязвимости

GHSA-h6v4-9c8c-hxcj

CVSS3: 8.8

github

больше 3 лет назад

Smart eVision has an improper privilege management vulnerability. A remote attacker with general user privilege can exploit this vulnerability to escalate to administrator privilege, and then perform arbitrary system command or disrupt service.

EPSS

Процентиль: 68%

0.00581

Низкий

8.8 High

CVSS3

Дефекты

CWE-269

CWE-269