PT-2024-38659 · Scooter · Beyond Compare
Tfhm
·
Published
2024-08-16
·
Updated
2025-01-10
·
CVE-2024-7886
CVSS v2.0
6.8
Medium
| Vector | AV:L/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Scooter Software Beyond Compare versions up to 3.3.5.15075
Description
A critical issue has been found in the library 7zxa.dll, affecting an unknown functionality. The manipulation leads to an uncontrolled search path. Local attack is required to exploit this issue. The existence of this issue is still disputed. The vendor states that a system must be breached before this issue can be exploited and does not plan to make any changes to address it.
Recommendations
For versions up to 3.3.5.15075, at the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Untrusted Search Path
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Beyond Compare