The Contec CONPROSYS HMI System (CHS) running on the remote host is affected by an OS command injection vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to execute arbitrary OS commands under the security context of the account running the CHS web application.
Binary data contec_chs_cve-2022-44456.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
contec | conprosys_hmi_system | cpe:/a:contec:conprosys_hmi_system |