Описание
Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818.
Ссылки
- ExploitThird Party Advisory
- ProductThird Party Advisory
- ExploitThird Party Advisory
- ProductThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.30.000000 (исключая)
cpe:2.3:a:articatech:artica_proxy:*:*:*:*:community:*:*:*
EPSS
Процентиль: 95%
0.17647
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-78
Связанные уязвимости
github
около 3 лет назад
Artica Proxy before 4.30.000000 Community Edition allows OS command injection via the Netbios name, Server domain name, dhclient_mac, Hostname, or Alias field. NOTE: this may overlap CVE-2020-10818.
EPSS
Процентиль: 95%
0.17647
Средний
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-78