Описание
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the program failed to adequately validate the user's input, an attacker could exploit this vulnerability to escalate local privileges.
Ссылки
- Broken LinkVendor Advisory
- Broken LinkVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.23.32 (исключая)
Одновременно
cpe:2.3:a:zte:zxcloud_irai:*:*:*:*:*:*:*:*
cpe:2.3:a:zte:zxcloud_irai:-:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00022
Низкий
6.4 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-22
CWE-427
Связанные уязвимости
CVSS3: 6.4
github
около 2 лет назад
There is an unsafe DLL loading vulnerability in ZTE ZXCLOUD iRAI. Due to the program failed to adequately validate the user's input, an attacker could exploit this vulnerability to escalate local privileges.
EPSS
Процентиль: 5%
0.00022
Низкий
6.4 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-22
CWE-427