exploitDog

CVE-2024-41143

Опубликовано: 29 июл. 2024

Источник: nvd

CVSS3: 7.8

EPSS Низкий

Описание

Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary process may be executed with SYSTEM privilege by a user who can log in to the PC where the product's Windows client is installed.

Ссылки

https://jvn.jp/en/jp/JVN84326763/
Third Party Advisory
https://www.skyseaclientview.net/news/240729_02/
Vendor Advisory
https://jvn.jp/en/jp/JVN84326763/
Third Party Advisory
https://www.skyseaclientview.net/news/240729_02/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:skygroup:skysea_client_view:*:*:*:*:*:*:*:*

Версия от 3.013.00 (включая) до 19.210.04e (включая)

EPSS

Процентиль: 23%

0.00076

Низкий

7.8 High

CVSS3

Дефекты

CWE-346

CWE-346

Связанные уязвимости

GHSA-4pmw-7j2g-cfp7

CVSS3: 7.8

github

больше 1 года назад

Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary process may be executed with SYSTEM privilege by a user who can log in to the PC where the product's Windows client is installed.

EPSS

Процентиль: 23%

0.00076

Низкий

7.8 High

CVSS3

Дефекты

CWE-346

CWE-346