exploitDog

CVE-2024-47407

Опубликовано: 22 нояб. 2024

Источник: nvd

CVSS3: 10

EPSS Средний

Описание

A parameter within a command does not properly validate input within myPRO Manager which could be exploited by an unauthenticated remote attacker to inject arbitrary operating system commands.

Ссылки

https://www.cisa.gov/news-events/ics-advisories/icsa-24-326-07

EPSS

Процентиль: 98%

0.66429

Средний

10 Critical

CVSS3

Дефекты

CWE-78

Связанные уязвимости

GHSA-hc88-rhv5-92jq

CVSS3: 10

github

около 1 года назад

A parameter within a command does not properly validate input within myPRO Manager which could be exploited by an unauthenticated remote attacker to inject arbitrary operating system commands.

EPSS

Процентиль: 98%

0.66429

Средний

10 Critical

CVSS3

Дефекты

CWE-78