Описание
Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allows attackers to execute code via PHP file uploads. This issue affects Pandora FMS: from 700 through 773.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 700 (включая) до 774 (исключая)
cpe:2.3:a:artica:pandora_fms:*:*:*:*:*:*:*:*
EPSS
Процентиль: 25%
0.00085
Низкий
7.6 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-434
CWE-434
Связанные уязвимости
CVSS3: 7.6
github
около 2 лет назад
Unrestricted Upload of File with Dangerous Type vulnerability in Pandora FMS on all allows Accessing Functionality Not Properly Constrained by ACLs. This vulnerability allows attackers to execute code via PHP file uploads. This issue affects Pandora FMS: from 700 through 773.
EPSS
Процентиль: 25%
0.00085
Низкий
7.6 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-434
CWE-434