New Vulnerability detected through Microsoft Defender #643
Comments
|
We also encountered this today. |
|
It seem the Pippo we have is part of the app Greenshot. Greenshot has not been updated since 2017. |
|
Greenshot is a .NET application and doesn't use Java or Pippo, this can only be a false positive from defender. |
|
JFYI it has been brought to our attention that
I hope that the Defender alerts will disappear as a result. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hello,
We just saw today (as we installed Greenshot), a vulnerability about Pippo.
Severity level is critical
Summary: Pippo through 1.11.0 allows remote code execution via a command to java.lang.ProcessBuilder because the XstreamEngine component does not use XStream's available protection mechanisms to restrict unmarshalling.
Impact: If a threat were to exploit this vulnerability, they could execute arbitrary code on the system, potentially leading to unauthorized access, data breaches, and further compromise of the affected system.
Remediation: Upgrade to Pippo version 1.11.1 or later.
More Details can be found here:
https://nvd.nist.gov/vuln/detail/CVE-2018-18240
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
The text was updated successfully, but these errors were encountered: