ГлавнаяУязвимости → CVE-2024-1149
7.8высокая

CVE-2024-1149

Описание

Improper Verification of Cryptographic Signature vulnerability in Snow Software Inventory Agent on MacOS, Snow Software Inventory Agent on Windows, Snow Software Inventory Agent on Linux allows File Manipulation through Snow Update Packages.This issue affects Inventory Agent: through 6.12.0; Inventory Agent: through 6.14.5; Inventory Agent: through 6.7.2.

Затрагиваемое ПО
Snowsoftware Snow inventory agentApple MacosLinux Linux kernelMicrosoft Windows
CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://community.snowsoftware.com/s/feed/0D5Td000004YtMcKAKhttps://community.snowsoftware.com/s/feed/0D5Td000004YtMcKAK