RSS   Vulnerabilities for 'Veraport g3'   RSS

2018-12-20
 
CVE-2018-5199

CWE-20
 

 
In Veraport G3 ALL on MacOS, due to insufficient domain validation, It is possible to overwrite installation file to malicious file. A remote unauthenticated attacker may use this vulnerability to execute arbitrary file.

 
 
CVE-2018-5198

CWE-362
 

 
In Veraport G3 ALL on MacOS, a race condition when calling the Veraport API allow remote attacker to cause arbitrary file download and execution. This results in remote code execution.

 


Copyright 2024, cxsecurity.com

 

Back to Top