CVE-2022-42496

Summary

OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product.

Affected Software

VendorProductVersion RangeStatus
kujirahandNako3edit, editor component of nadesiko3 (PC Version)v3.3.74 and earlieraffected

Weaknesses

  • OS Command Injection

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References