Описание
ZrLog 2.2.2 has a remote command execution vulnerability at plugin download function, it could execute any JAR file
Ссылки
- ExploitIssue TrackingThird Party Advisory
- ExploitIssue TrackingThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:zrlog:zrlog:2.2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 79%
0.01203
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
github
около 4 лет назад
ZrLog 2.2.2 has a remote command execution vulnerability at plugin download function, it could execute any JAR file
EPSS
Процентиль: 79%
0.01203
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-434