exploitDog

CVE-2022-0557

Опубликовано: 11 фев. 2022

Источник: nvd

CVSS3: 8.1

CVSS3: 7.2

CVSS2: 9

EPSS Средний

Описание

OS Command Injection in Packagist microweber/microweber prior to 1.2.11.

Ссылки

http://packetstormsecurity.com/files/166077/Microweber-1.2.11-Shell-Upload.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/microweber/microweber/commit/0a7e5f1d81de884861ca677ee1aaac31f188d632
Patch
Third Party Advisory
https://huntr.dev/bounties/660c89af-2de5-41bc-aada-9e4e78142db8
Exploit
Patch
Third Party Advisory
https://www.exploit-db.com/exploits/50768
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/166077/Microweber-1.2.11-Shell-Upload.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/microweber/microweber/commit/0a7e5f1d81de884861ca677ee1aaac31f188d632
Patch
Third Party Advisory
https://huntr.dev/bounties/660c89af-2de5-41bc-aada-9e4e78142db8
Exploit
Patch
Third Party Advisory
https://www.exploit-db.com/exploits/50768
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microweber:microweber:*:*:*:*:*:*:*:*

Версия до 1.2.11 (исключая)

EPSS

Процентиль: 94%

0.14137

Средний

8.1 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-78

CWE-78

Связанные уязвимости

GHSA-vm37-j55j-8655

CVSS3: 7.8

github

почти 4 года назад

OS Command Injection in Microweber

EPSS

Процентиль: 94%

0.14137

Средний

8.1 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-78

CWE-78