exploitDog

GHSA-px66-r9g5-2c75

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."

The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."

Ссылки

EPSS

Процентиль: 100%

0.89891

Высокий

CVE ID

Дефекты

CWE-20

Связанные уязвимости

CVE-2011-0923

nvd

почти 15 лет назад

The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."

EPSS

Процентиль: 100%

0.89891

Высокий

CVE ID

Дефекты

CWE-20