CVE-2023-36650

High

A missing integrity check in the update system in ProLion CryptoSpike 3.0.15P2 allows attackers to execute OS commands as the root Linux…

mitre·CWE-354·Published 2023-12-12

CVSS

7.2

EPSS

0.00

KEV

Exploits

cve.orgen

188 chars

A missing integrity check in the update system in ProLion CryptoSpike 3.0.15P2 allows attackers to execute OS commands as the root Linux user on the host system via forged update packages.

NVDen

188 chars

A missing integrity check in the update system in ProLion CryptoSpike 3.0.15P2 allows attackers to execute OS commands as the root Linux user on the host system via forged update packages.

Una verificación de integridad faltante en el sistema de actualización en ProLion CryptoSpike 3.0.15P2 permite a los atacantes ejecutar comandos del sistema operativo como usuario raíz de Linux en el sistema host a través de paquetes de actualización falsificados.

CVE-2023-36650

CVSS metrics across sources