exploitDog

GHSA-gwgr-xqcv-px29

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified vectors.

Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified vectors.

Ссылки

EPSS

Процентиль: 66%

0.00515

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-116

Связанные уязвимости

CVE-2016-3063

CVSS3: 7.5

nvd

почти 9 лет назад

Multiple functions in NetApp OnCommand System Manager before 8.3.2 do not properly escape special characters, which allows remote authenticated users to execute arbitrary API calls via unspecified vectors.

EPSS

Процентиль: 66%

0.00515

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-116