Описание
A vulnerability classified as critical has been found in SevOne Network Management System up to 5.7.2.22. This affects the file traceroute.php of the Traceroute Handler. The manipulation leads to privilege escalation with a command injection. It is possible to initiate the attack remotely.
Ссылки
- ExploitMailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
- ExploitMailing ListThird Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 5.7.2.0 (включая) до 5.7.2.22 (включая)
cpe:2.3:a:ibm:sevone_network_performance_management:*:*:*:*:*:*:*:*
EPSS
Процентиль: 92%
0.08244
Низкий
8.8 High
CVSS3
8.5 High
CVSS2
Дефекты
CWE-77
CWE-77
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A vulnerability classified as critical has been found in SevOne Network Management System up to 5.7.2.22. This affects the file traceroute.php of the Traceroute Handler. The manipulation leads to privilege escalation with a command injection. It is possible to initiate the attack remotely.
EPSS
Процентиль: 92%
0.08244
Низкий
8.8 High
CVSS3
8.5 High
CVSS2
Дефекты
CWE-77
CWE-77