Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-3882

Опубликовано: 02 сент. 2008
Источник: nvd
CVSS2: 10
EPSS Низкий

Описание

Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary commands via (1) the executeFilter function in zm_html_view_events.php and (2) the run_state parameter to zm_html_view_state.php.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:zoneminder:zoneminder:*:*:*:*:*:*:*:*
Версия до 1.23.3 (включая)
cpe:2.3:a:zoneminder:zoneminder:0.0.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.9:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.10:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.11:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.12:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.13:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.14:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.15:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:0.9.16:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.17.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.17.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.17.2:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.18.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.18.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.2:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.3:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.4:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.19.5:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.20.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.20.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.21.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.21.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.21.2:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.21.3:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.21.4:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.22.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.22.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.22.2:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.22.3:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.23.0:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.23.1:*:*:*:*:*:*:*
cpe:2.3:a:zoneminder:zoneminder:1.23.2:*:*:*:*:*:*:*

EPSS

Процентиль: 89%
0.0468
Низкий

10 Critical

CVSS2

Дефекты

CWE-94

Связанные уязвимости

ubuntu логотип

CVE-2008-3882

ubuntu
больше 17 лет назад

Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary commands via (1) the executeFilter function in zm_html_view_events.php and (2) the run_state parameter to zm_html_view_state.php.

debian логотип

CVE-2008-3882

debian
больше 17 лет назад

Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and ...

github логотип

GHSA-cvgp-9gf8-257q

github
почти 4 года назад

Unspecified "Command Injection" vulnerability in ZoneMinder 1.23.3 and earlier allows remote attackers to execute arbitrary commands via (1) the executeFilter function in zm_html_view_events.php and (2) the run_state parameter to zm_html_view_state.php.

EPSS

Процентиль: 89%
0.0468
Низкий

10 Critical

CVSS2

Дефекты

CWE-94