Lucene search

7C92E068-FF58-543A-A82E-39C4BFD04A0B

HistoryMay 10, 2022 - 5:52 p.m.

Exploit for Download of Code Without Integrity Check in Emcosoftware Msi Package Builder

2022-05-1017:52:31

321

emco software

msi package builder

cve-2022-28944

remote code execution

unauthenticated update

spoofing

dns spoofing

arp spoofing

compile proof of concept

self-signed certificates

update wizard

persuasive update description.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.015

Percentile

87.0%

JSON

CVE-2022-28944

> EMCO Software Multiple Products Unauthenticat…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.015

Percentile

87.0%

JSON

Related for 7C92E068-FF58-543A-A82E-39C4BFD04A0B