Описание
A vulnerability classified as problematic has been found in whaleal IceFrog 1.1.8. Affected is an unknown function of the component Aviator Template Engine. The manipulation leads to deserialization. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-231804.
Ссылки
- Broken LinkExploit
- Permissions RequiredThird Party AdvisoryVDB Entry
- Permissions RequiredThird Party AdvisoryVDB Entry
- Broken LinkExploit
- Permissions RequiredThird Party AdvisoryVDB Entry
- Permissions RequiredThird Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:whaleal:icefrog:1.1.8:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00096
Низкий
5.5 Medium
CVSS3
8.8 High
CVSS3
5.2 Medium
CVSS2
Дефекты
CWE-502
Связанные уязвимости
CVSS3: 5.5
github
больше 2 лет назад
Whaleal IceFrog is vulnerable to deserialization
EPSS
Процентиль: 27%
0.00096
Низкий
5.5 Medium
CVSS3
8.8 High
CVSS3
5.2 Medium
CVSS2
Дефекты
CWE-502