Описание
Code injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43 and earlier. If this vulnerability is exploited, a non-administrative user of the Mac where the product is installed may store and obtain audio and image data from the product without the user's consent.
Ссылки
- Product
- Third Party Advisory
- Product
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.6.43 (включая)
cpe:2.3:a:chatwork:chatwork:*:*:*:*:*:macos:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
4.4 Medium
CVSS3
Дефекты
CWE-94
CWE-94
Связанные уязвимости
CVSS3: 4.4
github
больше 2 лет назад
Code injection vulnerability exists in Chatwork Desktop Application (Mac) 2.6.43 and earlier. If this vulnerability is exploited, a non-administrative user of the Mac where the product is installed may store and obtain audio and image data from the product without the user's consent.
EPSS
Процентиль: 13%
0.00042
Низкий
4.4 Medium
CVSS3
Дефекты
CWE-94
CWE-94