5.4 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
49.4%
The SchedulerServer in Vmware photon allows remote attackers to inject logs through \r in the package parameter. Attackers can also insert malicious data and fake entries.
github.com/vmware/photon/wiki/log_injection_vulnerability