exploitDog

CVE-2023-48909

Опубликовано: 12 янв. 2024

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

An issue was discovered in Jave2 version 3.3.1, allows attackers to execute arbitrary code via the FFmpeg function.

Ссылки

https://gist.github.com/Dollhouse-18/288b4774bc296722c9e3c60bafa392bf
Vendor Advisory
https://github.com/Dollhouse-18/jave-core-Command-execution-vulnerability
Exploit
Vendor Advisory
https://gist.github.com/Dollhouse-18/288b4774bc296722c9e3c60bafa392bf
Vendor Advisory
https://github.com/Dollhouse-18/jave-core-Command-execution-vulnerability
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:aarboard:jave2:3.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 65%

0.00486

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-fmr7-cqjx-qmxg

CVSS3: 8.8

github

около 2 лет назад

An issue was discovered in Jave2 version 3.3.1, allows attackers to execute arbitrary code via the FFmpeg function.

EPSS

Процентиль: 65%

0.00486

Низкий

8.8 High

CVSS3

Дефекты

NVD-CWE-noinfo