exploitDog

CVE-2022-40741

Опубликовано: 31 окт. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Mail SQR Expert’s specific function has insufficient filtering for special characters. An unauthenticated remote attacker can exploit this vulnerability to perform arbitrary system command and disrupt service.

Ссылки

https://www.twcert.org.tw/tw/cp-132-6643-89bfa-1.html
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-6643-89bfa-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:softnext:mail_sqr_expert:2dut.190301:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02151

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78

CWE-78

Связанные уязвимости

GHSA-2wfq-2vjq-pr3g

CVSS3: 9.8

github

больше 2 лет назад

Mail SQR Expert’s specific function has insufficient filtering for special characters. An unauthenticated remote attacker can exploit this vulnerability to perform arbitrary system command and disrupt service.

EPSS

Процентиль: 84%

0.02151

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-78

CWE-78