Описание
Insecure Access Control in Safe Exam Browser (SEB) = 3.5.0 on Windows. The vulnerability allows an attacker to share clipboard data between the SEB kiosk mode and the underlying system, compromising exam integrity. By exploiting this flaw, an attacker can bypass exam controls and gain an unfair advantage during exams.
EPSS
Процентиль: 64%
0.00471
Низкий
8.2 High
CVSS3
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 8.2
github
больше 1 года назад
An issue in Safe Exam Browser for Windows before 3.6 allows an attacker to share clipboard data between the SEB kiosk mode and the underlying system, compromising exam integrity which may lead to arbitrary code execution and obtaining sensitive information via the Clipboard Management component.
EPSS
Процентиль: 64%
0.00471
Низкий
8.2 High
CVSS3
Дефекты
CWE-284