CVE-2017-2866

2017-11-07T11:29:00
ID CVE-2017-2866
Type cve
Reporter NVD
Modified 2017-11-27T18:32:49

Description

An exploitable vulnerability exists in the /api/CONFIG/backup functionality of Circle with Disney. Specially crafted network packets can cause an OS command injection. An attacker can send an HTTP request to trigger this vulnerability.