Описание
Insufficient validation of user-supplied input for the Solstice Pod networking configuration enables authenticated attackers to execute arbitrary commands as root.
Insufficient validation of user-supplied input for the Solstice Pod networking configuration enables authenticated attackers to execute arbitrary commands as root.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2017-12945
- https://documentation.mersive.com/content/pages/release-notes.htm
- https://github.com/aress31/cve-2017-12945
- https://github.com/aress31/cve-2017-12945/blob/master/images/changelog.png
- https://www.exploit-db.com/exploits/47722
- http://packetstormsecurity.com/files/155494/Mersive-Solstice-2.8.0-Remote-Code-Execution.html
EPSS
Процентиль: 96%
0.26364
Средний
CVE ID
Связанные уязвимости
CVSS3: 8.8
nvd
около 6 лет назад
Insufficient validation of user-supplied input for the Solstice Pod before 2.8.4 networking configuration enables authenticated attackers to execute arbitrary commands as root.
EPSS
Процентиль: 96%
0.26364
Средний