Описание
A vulnerability in the “Certificates and Keys” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to write arbitrary certificates in arbitrary file system paths via a crafted HTTP request.
EPSS
Процентиль: 37%
0.00158
Низкий
7.1 High
CVSS3
Дефекты
CWE-23
Связанные уязвимости
CVSS3: 7.1
github
9 месяцев назад
A vulnerability in the “Certificates and Keys” functionality of the web application of ctrlX OS allows a remote authenticated (low-privileged) attacker to write arbitrary certificates in arbitrary file system paths via a crafted HTTP request.
CVSS3: 7.1
fstec
10 месяцев назад
Уязвимость модуля Certificates and Keys приложения Device Admin App операционной системы ctrlX OS, позволяющая нарушителю записывать произвольные файлы
EPSS
Процентиль: 37%
0.00158
Низкий
7.1 High
CVSS3
Дефекты
CWE-23