exploitDog

CVE-2023-0315

Опубликовано: 16 янв. 2023

Источник: nvd

CVSS3: 7.2

CVSS3: 8.8

EPSS Критический

Описание

Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.

Ссылки

http://packetstormsecurity.com/files/171108/Froxlor-2.0.6-Remote-Command-Execution.html
http://packetstormsecurity.com/files/171729/Froxlor-2.0.3-Stable-Remote-Code-Execution.html
https://github.com/froxlor/froxlor/commit/090cfc26f2722ac3036cc7fd1861955bc36f065a
Patch
Third Party Advisory
https://huntr.dev/bounties/ff4e177b-ba48-4913-bbfa-ab8ce0db5943
Exploit
Patch
Third Party Advisory
http://packetstormsecurity.com/files/171108/Froxlor-2.0.6-Remote-Command-Execution.html
http://packetstormsecurity.com/files/171729/Froxlor-2.0.3-Stable-Remote-Code-Execution.html
https://github.com/froxlor/froxlor/commit/090cfc26f2722ac3036cc7fd1861955bc36f065a
Patch
Third Party Advisory
https://huntr.dev/bounties/ff4e177b-ba48-4913-bbfa-ab8ce0db5943
Exploit
Patch
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:froxlor:froxlor:*:*:*:*:*:*:*:*

Версия до 2.0.8 (исключая)

EPSS

Процентиль: 100%

0.90081

Критический

7.2 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-77

Связанные уязвимости

CVE-2023-0315

CVSS3: 8.8

debian

около 3 лет назад

Command Injection in GitHub repository froxlor/froxlor prior to 2.0.8.

GHSA-cp68-42pf-6627

CVSS3: 8.8

github

около 3 лет назад

Froxlor vulnerable to Command Injection

EPSS

Процентиль: 100%

0.90081

Критический

7.2 High

CVSS3

8.8 High

CVSS3

Дефекты

CWE-77