7.1
CVE-2023-1486
- EPSS 0.03%
- Veröffentlicht 18.03.2023 21:15:11
- Zuletzt bearbeitet 21.11.2024 07:39:17
- Quelle cna@vuldb.com
- CVE-Watchlists
- Unerledigt
LoginA vulnerability classified as problematic was found in Lespeed WiseCleaner Wise Force Deleter 1.5.3.54. This vulnerability affects the function 0x220004 in the library WiseUnlock64.sys of the component IoControlCode Handler. The manipulation leads to improper access controls. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-223372.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Wisecleaner ≫ Wise Force Deleter Version1.5.3.54
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.085 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
|
| cna@vuldb.com | 4.4 | 1.8 | 2.5 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
|
| cna@vuldb.com | 3.2 | 3.1 | 4.9 |
AV:L/AC:L/Au:S/C:N/I:P/A:P
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.