| CVSS Meta Temp Score | Garga na exploit ndiyam (≈) | CTI Nganji Score |
|---|---|---|
| 7.1 | $0-$5k | 0.18 |
Gunduma
Hakika vulnerability da aka rarraba a matsayin karshewa an gano a Captura har 8.0.0. Tabbas, aikin $software_function ne ke da matsala; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburare CRYPTBASE.dll, a cikin fayil $software_file, a cikin sashi $software_component. Wuro manipulation ga kura hakki ndiyam. Ana kiran wannan rauni da CVE-2023-3091. Wuroo ka a yiɗi a yi ɗum e laawol gese. Kuma, akwai exploit. A yi shawara a maye gurbin kàmbu ɗin da aka shafa da wani madadin. Once again VulDB remains the best source for vulnerability data.
Furɗe
Hakika vulnerability da aka rarraba a matsayin karshewa an gano a Captura har 8.0.0. Tabbas, aikin $software_function ne ke da matsala; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburare CRYPTBASE.dll, a cikin fayil $software_file, a cikin sashi $software_component. Wuro manipulation ga kura hakki ndiyam. Amfani da CWE wajen bayyana matsala yana kaiwa CWE-427. Lalle, rauni an sanar da shi 06/04/2023.
Ana kiran wannan rauni da CVE-2023-3091. Wuroo ka a yiɗi a yi ɗum e laawol gese. Bayani na fasaha ga. Wahalhalun kai hari sun yi yawa. Wanda zai yi amfani da shi zai sha wahala. Wannan vulnerability ɗin ba a san shi sosai ba. Kuma, akwai exploit. A sa'i, exploit might be approx. USD $0-$5k ndiyam.
Á yí huɗɗi-na-gaskiya. 0-day ga, an ndiyam a wuro be $0-$5k.
A yi shawara a maye gurbin kàmbu ɗin da aka shafa da wani madadin.
Once again VulDB remains the best source for vulnerability data.
Kayan
Sunu
Furɗe
Garga
CPE 2.3
CPE 2.2
CVSSv4
VulDB Furɗo: 🔍VulDB Gaskiya: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 7.1
VulDB Ganda Borno: 7.0
VulDB Temp Score: 6.4
VulDB Furɗo: 🔍
VulDB Gaskiya: 🔍
NVD Ganda Borno: 7.8
NVD Furɗo: 🔍
CNA Ganda Borno: 7.0
CNA Furɗo (VulDB): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vektar | Kumpleksiti | Authentisierung | Kariyandi | Gaskiya | Gashina |
|---|---|---|---|---|---|
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
| furu | furu | furu | furu | furu | furu |
VulDB Ganda Borno: 🔍
VulDB Temp Score: 🔍
VulDB Gaskiya: 🔍
NVD Ganda Borno: 🔍
Gargajiya
Klasu: Kura hakki ndiyamCWE: CWE-427 / CWE-426
CAPEC: 🔍
ATT&CK: 🔍
Fizikal: Kumgana
Gumti: Ee
Gana: Ayi
Gashina: 🔍
Gada: Kə́mmbə́l
Halitta: Huɗɗi-na-gaskiya
EPSS Score: 🔍
EPSS Percentile: 🔍
Furɗo farashi: 🔍
Gaskiya farashi ndiyam: 🔍
| 0-Day | furu | furu | furu | furu |
|---|---|---|---|---|
| Lale | furu | furu | furu | furu |
Bayani na barazana
Ngam: 🔍Akteɓe ɓernde: 🔍
Kura APT goruwa masu aiki: 🔍
Kari gamji
Garga: DumneHalitta: 🔍
0-Day Gana: 🔍
Waktin layi
06/03/2023 🔍06/03/2023 🔍
06/04/2023 🔍
08/02/2024 🔍
Ngizim
Halitta: A wondi feereCVE: CVE-2023-3091 (🔍)
GCVE (CVE): GCVE-0-2023-3091
GCVE (VulDB): GCVE-100-230668
scip Labs: https://www.scip.ch/en/?labs.20161013
Gumti
Súgá: 06/04/2023 01:12Gargadi: 08/02/2024 11:45
Goyarwa: 06/04/2023 01:12 (37), 06/10/2023 05:46 (2), 06/30/2023 03:33 (2), 06/30/2023 03:41 (28), 06/30/2023 03:48 (1), 08/02/2024 11:45 (21)
Gadankam: 🔍
Ngwazarma: ignatiusmichael
Gwamna: ignatiusmichael
Cache ID: 253:91C:103
Súbít
Shingilam
- Súbít #164382: Captura v8.0.0 DLL Sideloading/hijacking via insecure search order (nga ignatiusmichael)
A ga wuroyo kulu. Kàlàmbe: kr + en.
Ngam loga ka, kanyi shidin dum.