Описание
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation.
EPSS
Процентиль: 7%
0.00026
Низкий
7.8 High
CVSS3
Дефекты
CWE-428
Связанные уязвимости
CVSS3: 7.8
github
почти 2 года назад
Unquoted path or search item vulnerability in SugarSync versions prior to 4.1.3 for Windows. This misconfiguration could allow an unauthorized local user to inject arbitrary code into the unquoted service path, resulting in privilege escalation.
EPSS
Процентиль: 7%
0.00026
Низкий
7.8 High
CVSS3
Дефекты
CWE-428