How severe is CVE-2019-1010100?

CVE-2019-1010100 has a CVSS v3 score of 7.8 (HIGH).

CVE-2019-1010100

Name: rufus
Author: akeo

7.8HIGH

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portabl

Veröffentlicht: 7/19/2019Aktualisiert: 11/21/2024

Beschreibung

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables (ALL executables on the web site). The attack vector is: CAPEC-471, CWE-426, CWE-427.

KI-AnalyseKI-gestützt

Betroffene Produkte

akeorufus

Referenzen

http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory