Описание
A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santization when communicating customer process.
Ссылки
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:helpu:helpuftclient:3.0.0.0:*:*:*:*:windows:*:*
cpe:2.3:a:helpu:helpuftserver:3.0.0.0:*:*:*:*:windows:*:*
cpe:2.3:a:helpu:helpuserver:1.0.0.2:*:*:*:*:windows:*:*
cpe:2.3:a:helpu:helpuviewer:2018.5.21.0:*:*:*:*:windows:*:*
EPSS
Процентиль: 70%
0.00626
Низкий
7 High
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santization when communicating customer process.
EPSS
Процентиль: 70%
0.00626
Низкий
7 High
CVSS3
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-20
CWE-20