Описание
A vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application incorrectly neutralizes special elements when creating a report which could lead to command injection.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.0 (исключая)
Одно из
cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:sinec_nms:2.0:-:*:*:*:*:*:*
EPSS
Процентиль: 72%
0.00709
Низкий
8 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 8
github
почти 2 года назад
A vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application incorrectly neutralizes special elements when creating a report which could lead to command injection.
EPSS
Процентиль: 72%
0.00709
Низкий
8 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78