Command injection

2014-03-2520:55:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.3%

JSON

The Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to execute arbitrary commands with root privileges via unspecified vectors.

CPENameOperatorVersion
lotus_protector_for_mail_securityeq2.8
lotus_protector_for_mail_securityeq2.8.1

CPE	Name	Operator	Version
	lotus_protector_for_mail_security	eq	2.8
	lotus_protector_for_mail_security	eq	2.8.1

References

www-01.ibm.com/support/docview.wss?uid=swg21668124

exchange.xforce.ibmcloud.com/vulnerabilities/91173