CVE-2021-46899

CVSS 3.1 Score 7.8 of 10 (high)

Attack Complexity low
Confidentiality high
Integrity high
Availability high
Privileges Required low
Scope unchanged

Details

Published Dec 9, 2023
Updated: Dec 12, 2023

Summary

CVE-2021-46899 is a vulnerability affecting SyncTrayzor version 1.1.29. This issue grants local attackers the ability to enable remote debugging of Chromium Embedded Framework (CEF) within the application, leading to potential control over its operations. This poses a significant security risk, as attackers can leverage this vulnerability to execute arbitrary code or steal sensitive data. It is crucial for users to update to the latest version of SyncTrayzor, which has addressed this issue, in order to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share