Lucene search
GitHub Advisory DatabaseGHSA-X73W-G8HX-V7RPHistoryJan 20, 2023 - 9:30 p.m.
Code injection in electerm
2023-01-2021:30:32
CWE-94
GitHub Advisory Database
github.com
6
electerm
code injection
arbitrary code execution
unverified request
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
64.9%
An issue was discovered in Electerm 1.3.22, allows attackers to execute arbitrary code via unverified request to electerms service.
Affected configurations
Node
electerm_projectelectermRange≤1.3.22
Related
prion
prion
Code injection
2023-01-20 19:15:00
osv
osv
Code injection in electerm
2023-01-20 21:30:32
nvd
nvd
CVE-2020-23256
2023-01-20 19:15:13
cvelist
cvelist
CVE-2020-23256
2023-01-20 00:00:00
cve
cve
CVE-2020-23256
2023-01-20 19:15:13
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.002 Low
EPSS
Percentile
64.9%
Related for GHSA-X73W-G8HX-V7RP