Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenSight Software FlashFXP FlashFXP.exe uncontrolled search path
Vulnerability Description
A vulnerability was found in OpenSight Software FlashFXP 5.4.0.3970. It has been classified as critical. Affected is an unknown function in the library libcrypto-1_1.dll of the file FlashFXP.exe. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
OpenSight FlashFXP 代码问题漏洞
Vulnerability Description
OpenSight FlashFXP是OpenSight公司的一款适用于 Windows 的安全 FTP 客户端软件。 OpenSight FlashFXP 5.4.0.3970版本存在代码问题漏洞,该漏洞源于文件FlashFXP.exe的库libcrypto-1_1.dll中的未知函数会导致搜索路径不受控制。
CVSS Information
N/A
Vulnerability Type
N/A