exploitDog

CVE-2023-32764

Опубликовано: 03 авг. 2023

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Fabasoft Cloud Enterprise Client 23.3.0.130 allows a user to escalate their privileges to local administrator.

Ссылки

https://help.supportservices.fabasoft.com/index.php?topic=doc/Vulnerabilities-Fabasoft-Folio/vulnerabilities-2023.htm#client-autoupdate-harmful-code-installation-vulnerability-pdo06614-
Mitigation
Vendor Advisory
https://www.compass-security.com/fileadmin/Research/Advisories/2023_01_CSNC-2023-002_LPE_Cloud_Client.txt
Mitigation
Third Party Advisory
https://help.supportservices.fabasoft.com/index.php?topic=doc/Vulnerabilities-Fabasoft-Folio/vulnerabilities-2023.htm#client-autoupdate-harmful-code-installation-vulnerability-pdo06614-
Mitigation
Vendor Advisory
https://www.compass-security.com/fileadmin/Research/Advisories/2023_01_CSNC-2023-002_LPE_Cloud_Client.txt
Mitigation
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:fabasoft:cloud:-:*:*:*:*:*:*:*

cpe:2.3:a:fabasoft:cloud_enterprise_client:23.3.0.130:*:*:*:*:*:*:*

cpe:2.3:a:fabasoft:folio_\/_egov-suite:2021:update_rollup_3:*:*:*:*:*:*

cpe:2.3:a:fabasoft:folio_\/_egov-suite:2022:-:*:*:*:*:*:*

cpe:2.3:a:fabasoft:folio_\/_egov-suite:2022:update_rollup_3:*:*:*:*:*:*

cpe:2.3:a:fabasoft:folio_\/_egov-suite:2023:-:*:*:*:*:*:*

cpe:2.3:a:fabasoft:folio_\/_egov-suite:2023:update_rollup_1:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 19%

0.00061

Низкий

7.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-9wg5-4w44-rm5v

CVSS3: 7.8

github

больше 2 лет назад

Fabasoft Cloud Enterprise Client 23.3.0.130 allows a user to escalate their privileges to local administrator.

EPSS

Процентиль: 19%

0.00061

Низкий

7.8 High

CVSS3

Дефекты

NVD-CWE-noinfo