exploitDog

GHSA-hxf2-jwm7-w733

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

monarch_scan.cgi in the MONARCH component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands, and consequently obtain sensitive information, by leveraging a JOSSO SSO cookie.

monarch_scan.cgi in the MONARCH component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands, and consequently obtain sensitive information, by leveraging a JOSSO SSO cookie.

Ссылки

EPSS

Процентиль: 97%

0.4221

Средний

CVE ID

Связанные уязвимости

CVE-2013-3502

nvd

больше 12 лет назад

monarch_scan.cgi in the MONARCH component in GroundWork Monitor Enterprise 6.7.0 allows remote authenticated users to execute arbitrary commands, and consequently obtain sensitive information, by leveraging a JOSSO SSO cookie.

EPSS

Процентиль: 97%

0.4221

Средний

CVE ID