Security Advisory

CVE-2024-3775

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-15 02:41:18

Last updated 2024-08-01 20:20:01

Assigner twcert

State PUBLISHED

Description

aEnrich Technology a+HRDs functionality for downloading files using youtube-dl.exe does not properly restrict user input. This allows attackers to pass arbitrary arguments to youtube-dl.exe, leading to the download of partial unauthorized files.

← Browse all CVEs View on cve.org ↗