Remote code execution

2018-03-0121:29:00

PRIOn knowledge base

www.prio-n.com

9.4 High

AI Score

Confidence

High

0.016 Low

EPSS

Percentile

87.4%

JSON

An issue was discovered in the MBeans Server in Wowza Streaming Engine before 4.7.1. The file system may be read and written to via JMX using the default JMX credentials (remote code execution may be possible as well).

CPENameOperatorVersion
streaming_enginelt4.7.1

CPE	Name	Operator	Version
	streaming_engine	lt	4.7.1

References

raw.githubusercontent.com/WowzaMediaSystems/public_cve/main/wowza-streaming-engine/CVE-2018-7047.txt

www.wowza.com/docs/wowza-streaming-engine-4-7-1-release-notes