Описание
Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true, which allows remote attackers to execute arbitrary code with NETWORK SERVICE privileges via crafted XSL data.
Ссылки
- Issue TrackingVendor Advisory
- Issue TrackingRelease NotesThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
- Issue TrackingVendor Advisory
- Issue TrackingRelease NotesThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.02 (включая)
cpe:2.3:a:ektron:ektron_content_management_system:*:sp4:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.82595
Высокий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-19
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true, which allows remote attackers to execute arbitrary code with NETWORK SERVICE privileges via crafted XSL data.
EPSS
Процентиль: 99%
0.82595
Высокий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-19