Описание
By default, dedicated folders of CRYHOD for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perform tasks with higher privileges. Configuration of CRYHOD has to be modified to prevent this vulnerability.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2024.3 (включая)
Одновременно
cpe:2.3:a:primx:cryhod:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00102
Низкий
7.8 High
CVSS3
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 7.8
github
около 1 года назад
By default, dedicated folders of CRYHOD for Windows up to 2024.3 can be accessed by other users to misuse technical files and make them perform tasks with higher privileges. Configuration of CRYHOD has to be modified to prevent this vulnerability.
EPSS
Процентиль: 29%
0.00102
Низкий
7.8 High
CVSS3
Дефекты
CWE-276