CVE-2021-34689

Sažetak

iDrive RemotePC before 7.6.48 on Windows allows information disclosure. A locally authenticated attacker can read the system's Personal Key in world-readable %PROGRAMDATA% log files.

Reference

https://raw.githubusercontent.com/jacob-baines/vuln_disclosure/main/vuln_2021_01.txt
https://www.remotepc.com/release-info

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

26-07-2021 - 19:01

Objavljeno

15-07-2021 - 14:15