Lucene search

K
cve[email protected]CVE-2010-4278
HistoryDec 02, 2010 - 5:13 p.m.

CVE-2010-4278

2010-12-0217:13:00
CWE-78
web.nvd.nist.gov
31
cve-2010-4278
pandora fms
networkmap.php
remote code execution
nvd
security vulnerability

7.1 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.031 Low

EPSS

Percentile

90.8%

operation/agentes/networkmap.php in Pandora FMS before 3.1.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the layout parameter in an operation/agentes/networkmap action to index.php.

7.1 High

AI Score

Confidence

Low

9 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

0.031 Low

EPSS

Percentile

90.8%

Related for CVE-2010-4278