Описание
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command ('Command Injection') in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system.
EPSS
Процентиль: 49%
0.00262
Низкий
Дефекты
CWE-77
Связанные уязвимости
github
6 месяцев назад
Improper neutralization of alarm-to-mail configuration fields used in an OS shell Command ('Command Injection') in Danfoss AK-SM8xxA Series prior to version 4.3.1, leading to a potential post-authenticated remote code execution on an attacked system.
EPSS
Процентиль: 49%
0.00262
Низкий
Дефекты
CWE-77