exploitDog

CVE-2024-1683

Опубликовано: 23 фев. 2024

Источник: nvd

CVSS3: 7.3

EPSS Низкий

Описание

A DLL injection vulnerability exists where an authenticated, low-privileged local attacker could modify application files on the TIE Secure Relay host, which could allow for overriding of the configuration and running of new Secure Relay services.

Ссылки

https://www.tenable.com/security/tns-2024-03
Third Party Advisory
https://www.tenable.com/security/tns-2024-03
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tenable:identity_exposure:*:*:*:*:*:*:*:*

Версия до 3.59.4 (исключая)

EPSS

Процентиль: 7%

0.00026

Низкий

7.3 High

CVSS3

Дефекты

CWE-78

CWE-78

Связанные уязвимости

GHSA-3fhw-3rw6-474c

CVSS3: 7.3

github

почти 2 года назад

A DLL injection vulnerability exists where an authenticated, low-privileged local attacker could modify application files on the TIE Secure Relay host, which could allow for overriding of the configuration and running of new Secure Relay services.

EPSS

Процентиль: 7%

0.00026

Низкий

7.3 High

CVSS3

Дефекты

CWE-78

CWE-78