CVE-2023-30728 MEDIUM

CVE-2023-30728

Published September 6, 2023
Last update September 26, 2024

CVSS base score

4.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

What the vulnerability does

01Description

Intent redirection vulnerability in PackageInstallerCHN prior to version 13.1.03.00 allows local attacker to access arbitrary file. This vulnerability requires user interaction.

Key dates

02Disclosure timeline

September 6, 2023 CVE published
September 26, 2024 Record updated