Описание
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 (MR3) ;
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 8.50 (включая) до 8.50.2048 (исключая)
cpe:2.3:a:gallagher:command_centre:*:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
5.2 Medium
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428
CWE-428
Связанные уязвимости
github
около 4 лет назад
Unquoted service path vulnerability in the Gallagher Controller Service allows an unprivileged user to execute arbitrary code as the account that runs the Controller Service. This issue affects: Gallagher Command Centre 8.50 versions prior to 8.50.2048 (MR3) ;
EPSS
Процентиль: 13%
0.00044
Низкий
5.2 Medium
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428
CWE-428