exploitDog

CVE-2018-10587

Опубликовано: 01 нояб. 2018

Источник: nvd

CVSS3: 7.2

CVSS2: 9

EPSS Низкий

Описание

NetGain Enterprise Manager (EM) is affected by OS Command Injection vulnerabilities in versions before 10.0.57. These vulnerabilities could allow remote authenticated attackers to inject arbitrary code, resulting in remote code execution.

Ссылки

https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2018-004
Third Party Advisory
https://www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2018-004
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netgain-systems:enterprise_manager:*:*:*:*:free:*:*:*

Версия до 10.0.57 (исключая)

EPSS

Процентиль: 84%

0.02111

Низкий

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-jp6h-x9rv-p6h9

CVSS3: 7.2

github

больше 3 лет назад

NetGain Enterprise Manager (EM) is affected by OS Command Injection vulnerabilities in versions before 10.0.57. These vulnerabilities could allow remote authenticated attackers to inject arbitrary code, resulting in remote code execution.

EPSS

Процентиль: 84%

0.02111

Низкий

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-78