CVE-2024-27632

High

An issue in GNU Savane v.3.12 and before allows a remote attacker to escalate privileges via the form_id in the form_header() function.

mitre·CWE-335·Published 2024-04-08

CVSS

8.8

EPSS

0.01

KEV

Exploits

cve.orgen

135 chars

An issue in GNU Savane v.3.12 and before allows a remote attacker to escalate privileges via the form_id in the form_header() function.

NVDen

135 chars

An issue in GNU Savane v.3.12 and before allows a remote attacker to escalate privileges via the form_id in the form_header() function.

NVDes

143 chars

Un problema en GNU Savane v.3.12 y anteriores permite a un atacante remoto escalar privilegios a través de form_id en la función form_header().

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	8.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	8.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H