exploitDog

GHSA-394p-wh86-hccq

Опубликовано: 18 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device.

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device.

Ссылки

EPSS

Процентиль: 54%

0.00309

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2023-36670

CVSS3: 9.8

nvd

больше 2 лет назад

A remotely exploitable command injection vulnerability was found on the Kratos NGC-IDU 9.1.0.4. An attacker can execute arbitrary Linux commands as root by sending crafted TCP requests to the device.

EPSS

Процентиль: 54%

0.00309

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78