Описание
An arbitrary file overwrite vulnerability in the file import process of Tarot, Astro & Healing v11.4.0 allows attackers to overwrite critical internal files, potentially leading to arbitrary code execution or exposure of sensitive information.
Ссылки
- Broken Link
- Product
- ExploitThird Party Advisory
- Not Applicable
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:coto.world:coto:11.4.0:*:*:*:*:android:*:*
EPSS
Процентиль: 31%
0.00122
Низкий
6.5 Medium
CVSS3
8.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-22
Связанные уязвимости
CVSS3: 6.5
github
2 месяца назад
An arbitrary file overwrite vulnerability in the file import process of Tarot, Astro & Healing v11.4.0 allows attackers to overwrite critical internal files, potentially leading to arbitrary code execution or exposure of sensitive information.
EPSS
Процентиль: 31%
0.00122
Низкий
6.5 Medium
CVSS3
8.1 High
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-22