How severe is CVE-2019-1010100?

CVE-2019-1010100 has a CVSS v3 score of 7.8 (HIGH).

CVE-2019-1010100

Name: rufus
Author: akeo

7.8HIGH

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portabl

Опубликовано: 7/19/2019Обновлено: 11/21/2024

Описание

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables (ALL executables on the web site). The attack vector is: CAPEC-471, CWE-426, CWE-427.

ИИ-АнализНа базе ИИ

Затронутые продукты

akeorufus

Ссылки

http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory