CVE-2022-41642

Summary

OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product.

Affected Software

VendorProductVersion RangeStatus
kujirahandNadesiko3 (PC Version)v3.3.61 and earlieraffected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References