Lucene search
BlackberryCVELIST:CVE-2022-37425HistoryOct 28, 2022 - 3:09 p.m.
CVE-2022-37425 The FILES directive inside a VM template allows execution of uploaded files when the template is instantiated, resulting in a Remote Code Execution (RCE) attack.
2022-10-2815:09:21
blackberry
www.cve.org
cve-2022-37425
vm template
remote code execution
opennebula core
linux
command injection
9.9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
9.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.3%
Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in OpenNebula OpenNebula core on Linux allows Remote Code Inclusion.
Related
prion
prion
Command injection
2022-10-28 16:15:00
ubuntucve
ubuntucve
CVE-2022-37425
2022-10-28 00:00:00
cve
cve
CVE-2022-37425
2022-10-28 16:15:16
alpinelinux
alpinelinux
CVE-2022-37425
2022-10-28 16:15:00
nvd
nvd
CVE-2022-37425
2022-10-28 16:15:16
9.9 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
9.9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
44.3%
Related for CVELIST:CVE-2022-37425