exploitDog

GHSA-8m62-73pq-x847

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.

The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.

Ссылки

EPSS

Процентиль: 100%

0.92008

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78

Связанные уязвимости

CVE-2018-11138

CVSS3: 9.8

nvd

больше 7 лет назад

The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.

EPSS

Процентиль: 100%

0.92008

Критический

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-78