Описание
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication.
EPSS
Процентиль: 77%
0.01032
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-502
Связанные уязвимости
CVSS3: 9.8
github
7 дней назад
SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication.
CVSS3: 9.8
fstec
7 дней назад
Уязвимость библиотеки jabsorb сервлета AjaxProxy программного обеспечения управления ИТ-инфраструктурой SolarWinds Web Help Desk (WHD), позволяющая нарушителю выполнить произвольный код
EPSS
Процентиль: 77%
0.01032
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-502