Описание
InCopy versions 20.0, 19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 19.5.2 (исключая)
Одновременно
Одно из
cpe:2.3:a:adobe:incopy:*:*:*:*:*:*:*:*
cpe:2.3:a:adobe:incopy:20.0:*:*:*:*:*:*:*
Одно из
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
Дефекты
CWE-191
Связанные уязвимости
CVSS3: 7.8
github
12 месяцев назад
InCopy versions 20.0, 19.5.1 and earlier are affected by an Integer Underflow (Wrap or Wraparound) vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
EPSS
Процентиль: 13%
0.00042
Низкий
7.8 High
CVSS3
Дефекты
CWE-191