Lucene search
China National Vulnerability DatabaseCNVD-2022-59171HistoryMay 19, 2022 - 12:00 a.m.
Fidelis Network Deception Command Injection Vulnerability (CNVD-2022-59171)
2022-05-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
security product
fidelis usa
vulnerability
command injection
threat detection
data loss prevention
malicious behavior
traffic anomalies
advanced threats
cli access
EPSS
0.002
Percentile
59.4%
Fidelis Network Deception is a security product from Fidelis USA. A security vulnerability exists in versions prior to Fidelis Network Deception 9.4.5, which stems from a faulty remote_text_file in rconfig, to detect threats and prevent data loss, detect malicious behavior, identify traffic anomalies, and automatically respond to advanced threats. An attacker with CLI user-level access could exploit the vulnerability to inject root-level commands.
Related
cvelist
cvelist
cve
cve
CVE-2022-24390
2022-05-17 20:15:08
nvd
nvd
CVE-2022-24390
2022-05-17 20:15:08
prion
prion
Design/Logic Flaw
2022-05-17 20:15:00