CVE Published: 06/11/2023 |
CVE Updated: 02/08/2024 |
CVE Year: 2023 Source: icscert |
Vendor: Weintek |
Product: EasyBuilder Pro Status : PUBLISHED
CVE-2023-5777 Description
Weintek EasyBuilder Pro contains a vulnerability that, even when the private key is immediately deleted after the crash report transmission is finished, the private key is exposed to the public, which could result in obtaining remote control of the crash report server.
Metrics
CVSS Version: 3.1 |
Base Score: 9.8 CRITICAL Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H