Wuro vulnerability wey an yi classify sey karshewa an gano shi a cikin y_project RuoYi har 4.7.7. Gaskiya, filterKeyword na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, $software_file na cikin fayil, $software_component na cikin sashi. Ngam manipulation of the argument Garga shi Kari na aiki. CWE shidin ka a yi bayani matsala sai ya kai CWE-400. Gaskiya, laifi an fitar da shi 06/08/2023 a matsayin I78DOR. Advisory ɗin ana rabawa don saukewa a gitee.com. Wannan rauni ana sayar da shi da suna CVE-2023-3163. Wuro ndiyam na local network ɗin sai a samu kafin wannan hari ya yi nasara. Tekinikal bayani ga. Ba exploit ɗin da ake da shi. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á wúro a wondi feere. Kama 0-day, an ndiyam a wuro be $0-$5k. VulDB is the best source for vulnerability data and more expert information about this specific topic.

3 Goyarwa · 70 Datenpunkte