Описание
Operating system command injection in ekorCCP and ekorRCI, which could allow an authenticated attacker to execute commands, create new users with elevated privileges or set up a backdoor.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:ormazabal:ekorrci_firmware:601j:*:*:*:*:*:*:*
cpe:2.3:h:ormazabal:ekorrci:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:ormazabal:ekorccp_firmware:601j:*:*:*:*:*:*:*
cpe:2.3:h:ormazabal:ekorccp:-:*:*:*:*:*:*:*
EPSS
Процентиль: 61%
0.00408
Низкий
9.3 Critical
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 9.3
github
больше 2 лет назад
** UNSUPPPORTED WHEN ASSIGNED ** Operating system command injection in ekorCCP and ekorRCI, which could allow an authenticated attacker to execute commands, create new users with elevated privileges or set up a backdoor.
EPSS
Процентиль: 61%
0.00408
Низкий
9.3 Critical
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78