Описание
A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.
Ссылки
- Product
- ExploitMitigationThird Party Advisory
- ExploitMitigationThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:openc3:cosmos:6.0.0:*:*:*:enterprise:*:*:*
cpe:2.3:a:openc3:cosmos:6.0.0:*:*:*:open_source:*:*:*
EPSS
Процентиль: 74%
0.00854
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 9.8
github
8 месяцев назад
A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file.
EPSS
Процентиль: 74%
0.00854
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-94