exploitDog

CVE-2024-41726

Опубликовано: 29 июл. 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Path traversal vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary executable file may be executed by a user who can log in to the PC where the product's Windows client is installed.

Ссылки

https://jvn.jp/en/jp/JVN84326763/
Third Party Advisory
https://www.skyseaclientview.net/news/240729_02/
Vendor Advisory
https://jvn.jp/en/jp/JVN84326763/
Third Party Advisory
https://www.skyseaclientview.net/news/240729_02/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:skygroup:skysea_client_view:*:*:*:*:*:*:*:*

Версия от 15.200.13i (включая) до 19.300.09h (исключая)

EPSS

Процентиль: 68%

0.00571

Низкий

7.5 High

CVSS3

Дефекты

CWE-22

Связанные уязвимости

GHSA-vh6h-g733-6v5h

CVSS3: 7.5

github

больше 1 года назад

Path traversal vulnerability exists in SKYSEA Client View Ver.3.013.00 to Ver.19.210.04e. If this vulnerability is exploited, an arbitrary executable file may be executed by a user who can log in to the PC where the product's Windows client is installed.

EPSS

Процентиль: 68%

0.00571

Низкий

7.5 High

CVSS3

Дефекты

CWE-22