PT-2023-22938 · Unknown · S Assistant

Stealth Assassin

Publicado

2023-10-03

Atualizado

2023-10-05

CVE-2023-30735

CVSS v3.1

5.1

Média

Vetor

AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions SAssistant versions prior to 8.7

Description The issue allows local attackers to access backup data in SAssistant due to an improper preservation of permissions. This enables unauthorized access to sensitive information.

Recommendations For versions prior to 8.7, update to version 8.7 or later to resolve the issue. As a temporary workaround, consider restricting access to backup data in SAssistant until a patch is applied.

Correção

Improper Preservation of Permissions

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-281

Identificadores relacionados

CVE-2023-30735

Produtos afetados

S Assistant

PT-2023-22938 · Unknown · S Assistant

CVE-2023-30735

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6