Описание
SmartBear Zephyr Enterprise through 7.15.0 mishandles user-defined input during report generation. This could lead to remote code execution by unauthenticated users.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.15 (включая)
cpe:2.3:a:smartbear:zephyr_enterprise:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04373
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94
CWE-94
Связанные уязвимости
CVSS3: 9.8
github
почти 3 года назад
SmartBear Zephyr Enterprise through 7.15.0 mishandles user-defined input during report generation. This could lead to remote code execution by unauthenticated users.
EPSS
Процентиль: 89%
0.04373
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94
CWE-94