CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
85.1%
Numara FootPrints 7.5a through 7.5a1 and 8.0 through 8.0a allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) transcriptFile parameter to MRcgi/MRchat.pl or (2) LOADFILE parameter to MRcgi/MRABLoad2.pl. NOTE: some of these details are obtained from third party information.
Vendor | Product | Version | CPE |
---|---|---|---|
numarasoftware | footprints | 7.5a | cpe:2.3:a:numarasoftware:footprints:7.5a:*:*:*:*:*:*:* |
numarasoftware | footprints | 7.5a1 | cpe:2.3:a:numarasoftware:footprints:7.5a1:*:*:*:*:*:*:* |
numarasoftware | footprints | 8.0 | cpe:2.3:a:numarasoftware:footprints:8.0:*:*:*:*:*:*:* |
numarasoftware | footprints | 8.0a | cpe:2.3:a:numarasoftware:footprints:8.0a:*:*:*:*:*:*:* |