Lucene search
Armoury Crate Service Security Vulnerabilities
cve
Armoury Crate Service’s logging function has insufficient validation to check if the log file is a symbolic link. A physical attacker with general user privilege can modify the log file property to a symbolic link that points to arbitrary system file, causing the logging function to overwrite the s...
5.9CVSS
5.6AI Score
0.0004EPSS
2022-09-28 04:15 AM
25
2