Lucene search
GoogleOSV:GHSA-2877-693Q-PJ33HistoryMar 07, 2022 - 12:00 a.m.
OS Command Injection in GenieACS
2022-03-0700:00:40
Google
osv.dev
10
0.949 High
EPSS
Percentile
99.3%
In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument (lib/ui/api.ts and lib/ping.ts). The vulnerability arises from insufficient input validation combined with a missing authorization check.
Related
githubexploit
githubexploit
Exploit for OS Command Injection in Genieacs
2023-06-21 12:29:43
Exploit for OS Command Injection in Genieacs
2023-06-21 13:00:53
cve
cve
CVE-2021-46704
2022-03-06 07:15:07
veracode
veracode
OS Command Injection
2022-03-07 07:17:18
prion
prion
Command injection
2022-03-06 07:15:00
nuclei
nuclei
GenieACS => 1.2.8 - OS Command Injection
2023-06-21 20:03:09
github
github
OS Command Injection in GenieACS
2022-03-07 00:00:40
nvd
nvd
CVE-2021-46704
2022-03-06 07:15:07
osv
osv
CVE-2021-46704
2022-03-06 07:15:07
cvelist
cvelist
CVE-2021-46704
2022-03-06 06:23:47