Описание
The vulnerability consists of a session ID leak when saving a file downloaded from CGM CLININET. The identifier is exposed through a built-in Windows security feature that stores additional metadata in an NTFS alternate data stream (ADS) for all files downloaded from potentially untrusted sources.
EPSS
Процентиль: 5%
0.00021
Низкий
Дефекты
CWE-1230
Связанные уязвимости
github
5 месяцев назад
The vulnerability consists of a session ID leak when saving a file downloaded from CGM CLININET. The identifier is exposed through a built-in Windows security feature that stores additional metadata in an NTFS alternate data stream (ADS) for all files downloaded from potentially untrusted sources.
EPSS
Процентиль: 5%
0.00021
Низкий
Дефекты
CWE-1230