Unrated severityNVD Advisory· Published Apr 15, 2024· Updated Aug 1, 2024
aEnrich Technology a+HRD - Argument Injection
CVE-2024-3775
Description
aEnrich Technology a+HRD's functionality for downloading files using youtube-dl.exe does not properly restrict user input. This allows attackers to pass arbitrary arguments to youtube-dl.exe, leading to the download of partial unauthorized files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- aEnrich Technology/a+HRDv5Range: 6.8
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-7726-e5f70-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.