CVE-2023-27651

High

7.8/10

Summary

An issue found in Ego Studio SuperClean v.1.1.9 and v.1.1.5 allows an attacker to gain privileges via the update_info field of the _default_.xml file.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: HIGH

References

Advisory Timeline

Published Apr 14, 2023

CVE-2023-27651

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS