exploitDog

CVE-2022-26482

Опубликовано: 17 июл. 2022

Источник: nvd

CVSS3: 7.2

EPSS Средний

Описание

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin.

Ссылки

https://sec-consult.com/de/vulnerability-lab/advisory/poly-eagleeye-director-ii-kritische-schwachstellen/
Third Party Advisory
https://sec-consult.com/vulnerability-lab/advisory/critical-vulnerabilities-poly-eagleeye-director-ii/
Exploit
Third Party Advisory
https://www.poly.com/us/en/support/security-center
Vendor Advisory
https://sec-consult.com/de/vulnerability-lab/advisory/poly-eagleeye-director-ii-kritische-schwachstellen/
Third Party Advisory
https://sec-consult.com/vulnerability-lab/advisory/critical-vulnerabilities-poly-eagleeye-director-ii/
Exploit
Third Party Advisory
https://www.poly.com/us/en/support/security-center
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:poly:eagleeye_director_ii_firmware:*:*:*:*:*:*:*:*

Версия до 2.2.2.1 (исключая)

cpe:2.3:h:poly:eagleeye_director_ii:-:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.23625

Средний

7.2 High

CVSS3

Дефекты

CWE-78

Связанные уязвимости

GHSA-wmfw-wm24-v2vr

CVSS3: 7.2

github

больше 3 лет назад

An issue was discovered in Poly EagleEye Director II before 2.2.2.1. os.system command injection can be achieved by an admin.

EPSS

Процентиль: 96%

0.23625

Средний

7.2 High

CVSS3

Дефекты

CWE-78