Описание
BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability. It could allow a malicious operator to download files from arbitrary URLs without any proper validation or allowlist controls.
EPSS
Процентиль: 1%
0.00011
Низкий
2.5 Low
CVSS3
Дефекты
CWE-494
Связанные уязвимости
CVSS3: 2.5
github
около 1 года назад
BigFix Patch Download Plug-ins are affected by an arbitrary file download vulnerability. It could allow a malicious operator to download files from arbitrary URLs without any proper validation or allowlist controls.
EPSS
Процентиль: 1%
0.00011
Низкий
2.5 Low
CVSS3
Дефекты
CWE-494