ID |
CVE-2024-7324
|
Sažetak |
A vulnerability was found in IObit iTop Data Recovery Pro 4.4.0.687. It has been declared as critical. Affected by this vulnerability is an unknown functionality in the library madbasic_.bpl of the component BPL Handler. The manipulation leads to uncontrolled search path. Local access is required to approach this attack. The associated identifier of this vulnerability is VDB-273247. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. |
Reference |
|
CVSS |
Base: | 6.8 |
Impact: | 10.0 |
Exploitability: | 3.1 |
|
Pristup |
Vektor | Složenost | Autentikacija |
LOCAL |
LOW |
SINGLE |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
COMPLETE |
COMPLETE |
COMPLETE |
|
CVSS vektor |
AV:L/AC:L/Au:S/C:C/I:C/A:C |
Zadnje važnije ažuriranje |
01-08-2024 - 12:42 |
Objavljeno |
31-07-2024 - 18:15 |