CVE-2016-4900

Untrusted search path vulnerability in Evernote for Windows versions prior to 6.3 allows remote attackers to gain privileges via a Trojan…

jpcert·CWE-426·Published 2017-05-22

CVSS

—

EPSS

0.02

KEV

Exploits

cve.orgen

176 chars

Untrusted search path vulnerability in Evernote for Windows versions prior to 6.3 allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

NVDen

176 chars

Untrusted search path vulnerability in Evernote for Windows versions prior to 6.3 allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

NVDes

226 chars

La vulnerabilidad de ruta de búsqueda no confiable en las versiones de Evernote para Windows anteriores a la 6.3 permite a atacantes remotos obtener privilegios a través de una DLL troyanizada en un directorio no especificado.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P
3.0	Primary	NVD	7.8	1.8	5.9	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H