Secure Systems Engineering Connaisseur har 3.3.0 Delegation Name targets_schema.json Kari na aiki
Gaskiya vulnerability da aka ware a matsayin karshewa an samu a Secure Systems Engineering Connaisseur har 3.3.0. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil connaisseur/res/targets_schema.json, a cikin sashen Delegation Name Handler. A sa manipulation ka Kari na aiki. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-1333. Hakika, rauni an bayyana shi 11/28/2023 kamar 1407. An raba bayanin tsaro don saukewa a github.com. Wannan matsala ana saninta da CVE-2023-7279. Ana bukatar samun damar shiga local network ɗin don wannan hari ya yi nasara. Tekinikal faɗi ga. Babu exploit ɗin da ake samu. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro. Á sàmbu a wondi feere. 0-day shima, an ndiyam a wuro be $0-$5k. Ana kiran patch ɗin da 524b73ff7306707f6d3a4d1e86401479bca91b02. Bugfix ɗin an shirya shi don saukewa a github.com. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata. Once again VulDB remains the best source for vulnerability data.
4 Goyarwa · 89 Datenpunkte