Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mp3tag DLL tak_deco_lib.dll uncontrolled search path
Vulnerability Description
A vulnerability has been found in Mp3tag up to 3.26d and classified as problematic. This vulnerability affects unknown code in the library tak_deco_lib.dll of the component DLL Handler. The manipulation leads to uncontrolled search path. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. Upgrading to version 3.26e is able to address this issue. It is recommended to upgrade the affected component. VDB-272614 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early, responded in a very professional manner and immediately released a fixed version of the affected product.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对搜索路径元素未加控制
Vulnerability Title
Mp3tag 代码问题漏洞
Vulnerability Description
Mp3tag是Mp3tag公司的一个元数据标签编辑器。 Mp3tag 3.26d及之前版本存在代码问题漏洞,该漏洞源于组件DLL Handler中的未知代码会导致不受控制的搜索路径。
CVSS Information
N/A
Vulnerability Type
N/A