Описание
The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 7.0.0 (включая) до 8.0.0.410 (исключая)
cpe:2.3:a:veritas:infoscale_operations_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 31%
0.00115
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 7.2
github
больше 2 лет назад
The XPRTLD web application in Veritas InfoScale Operations Manager (VIOM) before 8.0.0.410 allows an authenticated attacker to upload all types of files to the server. An authenticated attacker can then execute the malicious file to perform command execution on the remote server.
EPSS
Процентиль: 31%
0.00115
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-434