| ID |
CVE-2025-1353
|
| Sažetak |
A vulnerability was found in Kong Insomnia up to 10.3.0 and classified as critical. This issue affects some unknown processing in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The exploitation is known to be difficult. The vendor was contacted early about this disclosure but did not respond in any way. |
| Reference |
|
| CVSS |
| Base: | 6.0 |
| Impact: | 10.0 |
| Exploitability: | 1.5 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
HIGH |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| COMPLETE |
COMPLETE |
COMPLETE |
|
| CVSS vektor |
AV:L/AC:H/Au:S/C:C/I:C/A:C |
| Zadnje važnije ažuriranje |
16-02-2025 - 15:15 |
| Objavljeno |
16-02-2025 - 15:15 |
