VYPR
Vendor

Armoury Crate Service

Products
1
CVEs
1
Across products
1
Status
Private

Products

1

Recent CVEs

1
  • CVE-2022-38699MedSep 28, 2022
    risk 0.38cvss 5.9epss 0.00

    Armoury Crate Service’s logging function has insufficient validation to check if the log file is a symbolic link. A physical attacker with general user privilege can modify the log file property to a symbolic link that points to arbitrary system file, causing the logging…