Описание
An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API.
Ссылки
- Broken Link
- ExploitThird Party Advisory
- Broken Link
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.27.0 (включая)
cpe:2.3:a:badaix:snapcast:*:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.29015
Средний
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-94
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 2 лет назад
An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API.
CVSS3: 9.8
debian
около 2 лет назад
An issue was discovered in badaix Snapcast version 0.27.0, allows remo ...
CVSS3: 9.8
github
около 2 лет назад
An issue was discovered in badaix Snapcast version 0.27.0, allows remote attackers to execute arbitrary code and gain sensitive information via crafted request in JSON-RPC-API.
EPSS
Процентиль: 96%
0.29015
Средний
9.8 Critical
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-94