How severe is CVE-2019-1010100?

CVE-2019-1010100 has a CVSS v3 score of 7.8 (HIGH).

CVE-2019-1010100

Name: rufus
Author: akeo

7.8HIGH

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portabl

公開日: 7/19/2019更新日: 11/21/2024

説明

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables (ALL executables on the web site). The attack vector is: CAPEC-471, CWE-426, CWE-427.

AI分析AIによる分析

影響を受ける製品

akeorufus

参照

http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory