exploitDog

GHSA-q38v-gvjv-m5cj

Опубликовано: 29 мая 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. BrowseFiles.php allows a ?cmd=ssh POST request with an ssh_command field that is executed.

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. BrowseFiles.php allows a ?cmd=ssh POST request with an ssh_command field that is executed.

Ссылки

EPSS

Процентиль: 97%

0.42602

Средний

7.2 High

CVSS3

CVE ID

Дефекты

CWE-77

Связанные уязвимости

CVE-2022-24630

CVSS3: 7.2

nvd

больше 2 лет назад

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. BrowseFiles.php allows a ?cmd=ssh POST request with an ssh_command field that is executed.

EPSS

Процентиль: 97%

0.42602

Средний

7.2 High

CVSS3

CVE ID

Дефекты

CWE-77