Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2019-17270
HistoryDec 10, 2019 - 9:15 p.m.

Authentication flaw

2019-12-1021:15:00
PRIOn knowledge base
www.prio-n.com
1

9.6 High

AI Score

Confidence

High

0.924 High

EPSS

Percentile

99.0%

JSON

Yachtcontrol through 2019-10-06: It’s possible to perform direct Operating System commands as an unauthenticated user via the “/pages/systemcall.php?command={COMMAND}” page and parameter, where {COMMAND} will be executed and returning the results to the client. Affects Yachtcontrol webservers disclosed via Dutch GPRS/4G mobile IP-ranges. IP addresses vary due to DHCP client leasing of telco’s.

CPENameOperatorVersion
yachtcontroleq<= 2019106

Related

zdt 1
threatpost 1
cvelist 1
cve 1
nuclei 1
nvd 1
packetstorm 1
zdt
zdt
Yachtcontrol 2019-10-06 Remote Code Execution Exploit #RCE
2019-12-06 00:00:00
threatpost
threatpost
Echobot IoT Botnet Casts a Wide Net with Raft of Exploit Additions
2019-12-16 16:44:51
cvelist
cvelist
CVE-2019-17270
2019-12-10 20:48:37
cve
cve
CVE-2019-17270
2019-12-10 21:15:15
nuclei
nuclei
Yachtcontrol Webapplication 1.0 - Remote Command Injection
2021-04-18 14:02:04
nvd
nvd
CVE-2019-17270
2019-12-10 21:15:15
packetstorm
packetstorm
Yachtcontrol 2019-10-06 Remote Code Execution
2019-12-06 00:00:00

9.6 High

AI Score

Confidence

High

0.924 High

EPSS

Percentile

99.0%

JSON
Related for PRION:CVE-2019-17270
zdt1threatpost1cvelist1cve1nuclei1nvd1packetstorm1