PT-2023-23867 · Unknown · Chatwork Desktop Application

Koh M. Nakagawa

Publicado

2023-06-13

Atualizado

2025-01-03

CVE-2023-32546

CVSS v3.1

4.4

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Chatwork Desktop Application (Mac) versions 2.6.43 and earlier

Description A code injection issue exists, allowing a non-administrative user of the Mac where the product is installed to store and obtain audio and image data from the product without the user's consent.

Recommendations For versions 2.6.43 and earlier, update to a version later than 2.6.43 to resolve the issue.

Correção

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2023-32546

Produtos afetados

Chatwork Desktop Application

PT-2023-23867 · Unknown · Chatwork Desktop Application

CVE-2023-32546

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6