Описание
RoboDK versions 5.5.3 and prior contain an insecure permission assignment to critical directories vulnerability, which could allow a local user to escalate privileges and write files to the RoboDK process and achieve code execution.
Ссылки
- Product
- Third Party AdvisoryUS Government Resource
- Product
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 5.5.3 (включая)
cpe:2.3:a:robodk:robodk:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
7.9 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-732
CWE-732
Связанные уязвимости
CVSS3: 7.8
github
почти 3 года назад
RoboDK versions 5.5.3 and prior contain an insecure permission assignment to critical directories vulnerability, which could allow a local user to escalate privileges and write files to the RoboDK process and achieve code execution.
EPSS
Процентиль: 13%
0.00044
Низкий
7.9 High
CVSS3
7.8 High
CVSS3
Дефекты
CWE-732
CWE-732