CVE-2023-48387

Опубликовано: 15 дек. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

TAIWAN-CA(TWCA) JCICSecurityTool fails to check the source website and access locations when executing multiple Registry-related functions. In the scenario where a user is using the JCICSecurityTool and has completed identity verification, if the user browses a malicious webpage created by an attacker, the attacker can exploit this vulnerability to read or modify any registry file under HKEY_CURRENT_USER, thereby achieving remote code execution.

Ссылки

https://www.twcert.org.tw/tw/cp-132-7602-a47a2-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-7602-a47a2-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:twca:jcicsecuritytool:4.2.3.32:*:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01017

Низкий

8.8 High

CVSS3

Дефекты

CWE-940

NVD-CWE-noinfo

Связанные уязвимости

GHSA-g7qw-4p9h-v9vx

CVSS3: 6.1

github

около 2 лет назад

TAIWAN-CA(TWCA) JCICSecurityTool's Registry-related functions have insufficient filtering for special characters. An unauthenticated remote attacker can inject malicious script into a webpage to perform XSS (Stored Cross-Site Scripting) attack.