CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-3842

A vulnerability was found in Pointware EasyInventory 1.0.12.0 and classified as critical. This issue affects some unknown processing of the file C:\Program Files (x86)\EasyInventory\Easy2W.exe. The manipulation leads to unquoted search path. Attacking locally is a requirement. The identifier VDB-235193 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 7.1%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://vuldb.com/?ctiid.235193
https://vuldb.com/?id.235193
https://vuldb.com/?ctiid.235193
https://vuldb.com/?id.235193

Products affected by CVE-2023-3842

Pointware » Easyinventory » Version: 1.0.12.0

cpe:2.3:a:pointware:easyinventory:1.0.12.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-3842

Products

Pricing

Contact Us