exploitDog

GHSA-6xj9-g6q5-f8xc

Опубликовано: 27 мар. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

HGiga MailSherlock query function for connection log has a vulnerability of insufficient filtering for user input. An authenticated remote attacker with administrator privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service.

HGiga MailSherlock query function for connection log has a vulnerability of insufficient filtering for user input. An authenticated remote attacker with administrator privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service.

Ссылки

EPSS

Процентиль: 52%

0.00289

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2023-24841

CVSS3: 7.2

nvd

почти 3 года назад

HGiga MailSherlock query function for connection log has a vulnerability of insufficient filtering for user input. An authenticated remote attacker with administrator privilege can exploit this vulnerability to inject and execute arbitrary system commands to perform arbitrary system operation or disrupt service.

BDU:2024-01450

CVSS3: 7.2

fstec

почти 3 года назад

Уязвимость функции ведения журнала подключений платформы аудита записей электронной почты MailSherlock, позволяющая нарушителю выполнить произвольные команды

EPSS

Процентиль: 52%

0.00289

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-78