HIGH🇵🇱 Wersja polska

CVE-2024-1150

CVSS 7.8v3.1pub. 2024-02-08upd. 2024-11-21

Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on Unix allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 7.3.1.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Opengroup Unix

    OS
    Opengroup
    wszystkie wersje
  • Snowsoftware Snow Inventory Agent

    APP
    Snowsoftware
    < 7.3.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2013-0625CRITICAL9.8⚠ KEVten sam produkt

Adobe ColdFusion 9.0, 9.0.1, and 9.0.2, when a password is not configured, allows remote attackers to bypass a...

CVE-2011-2462CRITICAL9.8⚠ KEVten sam produkt

Unspecified vulnerability in the U3D component in Adobe Reader and Acrobat 10.1.1 and earlier on Windows and M...

CVE-2020-6294CRITICAL9.1ten sam produkt

Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not pe...

CVE-2019-9895CRITICAL9.8ten sam produkt

In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-...

CVE-2022-30333HIGH7.5⚠ KEVten sam produkt

RARLAB UnRAR before 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka...