Comparex: >> Miss Marple Security Vulnerabilities
COMPAREX Miss Marple Enterprise Edition before 2.0 allows local users to execute arbitrary code by reading the user name and encrypted password hard-coded in an Inventory Agent configuration file.
CVSS Score
7.8
EPSS Score
0.001
Published
2018-12-20
The Miss Marple Updater Service in COMPAREX Miss Marple Enterprise Edition before 2.0 allows remote attackers to execute arbitrary code with SYSTEM privileges via vectors related to missing update validation.
CVSS Score
8.8
EPSS Score
0.063
Published
2018-12-20