Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
UiPath Assistant 21.4.4 will load and execute attacker controlled data from the file path supplied to the --dev-widget argument of the URI handler for uipath-assistant://. This allows an attacker to execute code on a victim's machine or capture NTLM credentials by supplying a networked or WebDAV file path.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
UiPath Assistant安全漏洞
Vulnerability Description
UiPath Assistant是UiPath的一款专用工具,旨在让用户从桌面与机器人进行交互变得轻松有趣。 UiPath Assistant 21.4.4 存在安全漏洞,该漏洞允许攻击者通过提供网络或 WebDAV 文件路径在受害者的机器上执行代码或捕获 NTLM 凭据。
CVSS Information
N/A
Vulnerability Type
N/A