exploitDog

CVE-2023-28869

Опубликовано: 09 дек. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link.

Ссылки

https://herolab.usd.de/en/security-advisories/usd-2022-0003/
Exploit
Third Party Advisory
https://herolab.usd.de/en/security-advisories/usd-2022-0003/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ncp-e:secure_enterprise_client:*:*:*:*:*:*:*:*

Версия до 12.22 (исключая)

EPSS

Процентиль: 29%

0.00103

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-59

Связанные уязвимости

GHSA-5m2x-f7x7-rqqr

CVSS3: 6.5

github

около 2 лет назад

Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers read the contents of arbitrary files on the operating system by creating a symbolic link.

EPSS

Процентиль: 29%

0.00103

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-59