How severe is CVE-2019-1010100?

CVE-2019-1010100 has a CVSS v3 score of 7.8 (HIGH).

CVE-2019-1010100

Name: rufus
Author: akeo

7.8HIGH

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portabl

发布于: 7/19/2019更新于: 11/21/2024

描述

Akeo Consulting Rufus 3.0 and earlier is affected by: DLL search order hijacking. The impact is: Arbitrary code execution WITH escalation of privilege. The component is: Executable installers, portable executables (ALL executables on the web site). The attack vector is: CAPEC-471, CWE-426, CWE-427.

AI分析AI驱动

受影响产品

akeorufus

参考资料

http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory
http://seclists.org/oss-sec/2018/q2/146
Mailing ListThird Party Advisory