exploitDog

GHSA-6p8q-94vc-wgp9

Опубликовано: 07 янв. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.4

Описание

An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated Local privileges and execute arbitrary commands via /opt/tsce4/torque6/bin/getJobsByShell.

An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated Local privileges and execute arbitrary commands via /opt/tsce4/torque6/bin/getJobsByShell.

Ссылки

EPSS

Процентиль: 26%

0.00091

Низкий

8.4 High

CVSS3

CVE ID

Дефекты

CWE-276

Связанные уязвимости

CVE-2021-27285

CVSS3: 8.4

nvd

около 1 года назад

An issue was discovered in Inspur ClusterEngine v4.0 that allows attackers to gain escalated Local privileges and execute arbitrary commands via /opt/tsce4/torque6/bin/getJobsByShell.

EPSS

Процентиль: 26%

0.00091

Низкий

8.4 High

CVSS3

CVE ID

Дефекты

CWE-276