Lucene search
MitreCVE-2023-25304HistoryMar 06, 2023 - 5:15 p.m.
CVE-2023-25304
2023-03-0617:15:10
CWE-22
mitre
web.nvd.nist.gov
40
cve-2023-25304
prism launcher
vulnerability
directory traversal
nvd
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
26.9%
An issue in Prism Launcher up to v6.1 allows attackers to perform a directory traversal via importing a crafted .mrpack file.
Affected configurations
Node
prismlauncherprism_launcherRange≤6.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| prismlauncher | prism_launcher | * | cpe:2.3:a:prismlauncher:prism_launcher:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2023-25304
2023-03-06 17:15:10
cvelist
cvelist
CVE-2023-25304
2023-03-06 00:00:00
prion
prion
Directory traversal
2023-03-06 17:15:00
osv
osv
CVE-2023-25304
2023-03-06 17:15:10
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
High
EPSS
0.001
Percentile
26.9%
Related for CVE-2023-25304