Описание
The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:security_agent:5.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:security_agent:5.2:*:*:*:*:*:*:*
cpe:2.3:a:cisco:security_agent:6.0:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.15536
Средний
10 Critical
CVSS2
Дефекты
CWE-94
Связанные уязвимости
github
больше 3 лет назад
The Management Console (webagent.exe) in Cisco Security Agent 5.1, 5.2, and 6.0 before 6.0.2.145 allows remote attackers to create arbitrary files and execute arbitrary code via unspecified parameters in a crafted st_upload request.
EPSS
Процентиль: 94%
0.15536
Средний
10 Critical
CVSS2
Дефекты
CWE-94