Описание
A Bash script injection vulnerability exists in Kemp Load Master 7.1-16 and earlier due to a failure to sanitize input in the Web User Interface (WUI).
Ссылки
- http://packetstormsecurity.com/files/131284/Kemp-Load-Master-7.1-16-CSRF-XSS-DoS-Code-Execution.htmlExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Release NotesThird Party Advisory
- http://packetstormsecurity.com/files/131284/Kemp-Load-Master-7.1-16-CSRF-XSS-DoS-Code-Execution.htmlExploitThird Party AdvisoryVDB Entry
- ExploitThird Party AdvisoryVDB Entry
- Release NotesThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.1-16 (включая)
cpe:2.3:a:kemptechnologies:loadmaster:*:*:*:*:*:*:*:*
EPSS
Процентиль: 94%
0.13883
Средний
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-74
Связанные уязвимости
github
больше 3 лет назад
A Bash script injection vulnerability exists in Kemp Load Master 7.1-16 and earlier due to a failure to sanitize input in the Web User Interface (WUI).
EPSS
Процентиль: 94%
0.13883
Средний
8.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-74