exploitDog

CVE-2024-31201

Опубликовано: 31 июл. 2024

Источник: nvd

CVSS3: 6.5

CVSS3: 6.7

EPSS Низкий

Описание

A “CWE-428: Unquoted Search Path or Element” affects the ThermoscanIP_Scrutation service. Such misconfiguration could be abused in scenarios where incorrect permissions were assigned to the C:\ path to attempt a privilege escalation on the local machine.

Ссылки

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-31201
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:proges:thermoscan_ip:20211103:*:*:*:*:*:*:*

EPSS

Процентиль: 11%

0.00037

Низкий

6.5 Medium

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-428

CWE-428

Связанные уязвимости

GHSA-96m3-7m8m-wmff

CVSS3: 6.5

github

больше 1 года назад

A “CWE-428: Unquoted Search Path or Element” affects the ThermoscanIP_Scrutation service. Such misconfiguration could be abused in scenarios where incorrect permissions were assigned to the C:\ path to attempt a privilege escalation on the local machine.

EPSS

Процентиль: 11%

0.00037

Низкий

6.5 Medium

CVSS3

6.7 Medium

CVSS3

Дефекты

CWE-428

CWE-428