Описание
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 12.22 (исключая)
cpe:2.3:a:ncp-e:secure_enterprise_client:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 6.5
github
около 2 лет назад
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts.
EPSS
Процентиль: 13%
0.00042
Низкий
6.5 Medium
CVSS3
Дефекты
CWE-276