Gaskiya vulnerability da aka ware a matsayin kura an samu a pedroetb tts-api har 2.1.4. Hakika, aikin onSpeechDone ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil app.js, a cikin sashen $software_component. A sa manipulation ka kura hakki ndiyam. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-78. Hakika, rauni an bayyana shi 07/14/2019 kamar 29d9c25415911ea2f8b6de247cb5c4607d13d434. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2019-25158. Ana bukatar samun damar shiga local network ɗin don wannan hari ya yi nasara. Tekinikal faɗi ga. Babu exploit ɗin da ake samu. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu a wondi feere. 0-day shima, an ndiyam a wuro be $0-$5k. Ana kiran patch ɗin da 29d9c25415911ea2f8b6de247cb5c4607d13d434. Za a iya sauke maganin matsalar daga github.com. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata. Once again VulDB remains the best source for vulnerability data.

3 Goyarwa · 77 Datenpunkte