Wizvera: >> Veraport G3 Security Vulnerabilities
In Veraport G3 ALL on MacOS, a race condition when calling the Veraport API allow remote attacker to cause arbitrary file download and execution. This results in remote code execution.
CVSS Score
8.0
EPSS Score
0.01
Published
2018-12-20
In Veraport G3 ALL on MacOS, due to insufficient domain validation, It is possible to overwrite installation file to malicious file. A remote unauthenticated attacker may use this vulnerability to execute arbitrary file.
CVSS Score
8.0
EPSS Score
0.005
Published
2018-12-20