Support Assistant
by NCP Secure Enterprise Client
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-28870 | Med | 0.42 | 6.5 | 0.01 | Dec 9, 2023 | Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts. | ||
| CVE-2023-28871 | Med | 0.28 | 4.3 | 0.01 | Dec 9, 2023 | Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to read registry information of the operating system by creating a symbolic link. |
- risk 0.42cvss 6.5epss 0.01
Insecure File Permissions in Support Assistant in NCP Secure Enterprise Client before 12.22 allow attackers to write to configuration files from low-privileged user accounts.
- risk 0.28cvss 4.3epss 0.01
Support Assistant in NCP Secure Enterprise Client before 12.22 allows attackers to read registry information of the operating system by creating a symbolic link.