CVE-2025-10644 in Repairit情報

要約

〜によって MITRE • 2025年09月18日

Wondershare Repairit SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability. This vulnerability allows remote attackers to bypass authentication on Wondershare Repairit. Authentication is not required to exploit this vulnerability.

The specific flaw exists within the permissions granted to an SAS token. An attacker can leverage this vulnerability to launch a supply-chain attack and execute arbitrary code on customers' endpoints. Was ZDI-CAN-26892.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

責任者

Zdi

予約する

2025年09月17日

モデレーション

承諾済み

エントリ

VDB-324758

EPSS

0.03736

アクティビティ

非常低い

ソース

Do you know our Splunk app?

Download it now for free!