exploitDog

CVE-2023-37537

Опубликовано: 17 окт. 2023

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

An unquoted service path vulnerability in HCL AppScan Presence, deployed as a Windows service in HCL AppScan on Cloud (ASoC), may allow a local attacker to gain elevated privileges.

Ссылки

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108018
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0108018
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:appscan_presence:*:*:*:*:*:*:*:*

Версия до 2.1.37 (включая)

EPSS

Процентиль: 7%

0.00027

Низкий

7.8 High

CVSS3

Дефекты

CWE-428

Связанные уязвимости

GHSA-2hmc-82rg-26hv

CVSS3: 7.8

github

больше 2 лет назад

An unquoted service path vulnerability in HCL AppScan Presence, deployed as a Windows service in HCL AppScan on Cloud (ASoC), may allow a local attacker to gain elevated privileges.

EPSS

Процентиль: 7%

0.00027

Низкий

7.8 High

CVSS3

Дефекты

CWE-428