Gaskiya vulnerability da aka ware a matsayin kura an samu a IBOS OA 4.5.5. Hakika, aikin actionEdit ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil ?r=officialdoc/officialdoc/edit, a cikin sashen Mobile Notification Handler. A sa manipulation ka SQL Injection. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-89. Hakika, rauni an bayyana shi 07/12/2023. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2023-3801. Ana bukatar samun damar shiga local network ɗin don wannan hari ya yi nasara. Tekinikal faɗi ga. Har ila yau, exploit ɗin yana nan. An bayyana exploit ɗin ga mutane kuma yana iya amfani. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Á sàmbu huɗɗi-na-gaskiya. Exploit ɗin za a iya saukewa daga github.com. 0-day shima, an ndiyam a wuro be $0-$5k. Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

4 Goyarwa · 75 Datenpunkte