| ID |
CVE-2024-7324
|
| Sažetak |
A vulnerability was found in IObit iTop Data Recovery Pro 4.4.0.687. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library madbasic_.bpl of the component BPL Handler. The manipulation leads to uncontrolled search path. Local access is required to approach this attack. The associated identifier of this vulnerability is VDB-273247. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. |
| Reference |
|
| CVSS |
| Base: | 6.8 |
| Impact: | 10.0 |
| Exploitability: | 3.1 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
LOW |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| CVSS vektor |
AV:L/AC:L/Au:S/C:C/I:C/A:C |
| Zadnje važnije ažuriranje |
01-08-2024 - 12:42 |
| Objavljeno |
31-07-2024 - 18:15 |
