9.3

CVE-2013-0733

EPSS 7.44%
Veröffentlicht 05.06.2014 20:55:04
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle PSIRT-CNA@flexerasoftware.com
CVE-Watchlists
Login
Unerledigt
Login

Untrusted search path vulnerability in Corel PaintShop Pro X5 and X6 16.0.0.113, 15.2.0.2, and earlier allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a .jpg file.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Corel ≫ Paintshop Pro X5 Version <= 15.2.0.2

Corel ≫ Paintshop Pro X6 Version <= 16.0.0.113

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	7.44%	0.913

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://osvdb.org/98163

Broken Link

http://secunia.com/advisories/53618

Third Party Advisory

http://www.securityfocus.com/bid/62836

Third Party Advisory

VDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/87763

VDB Entry

https://nvd.nist.gov/vuln/detail/CVE-2013-0733

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-0733

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-0733

EUVD