Remote file inclusion

2021-05-0704:15:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.9%

A remote file inclusion vulnerability exists in Artica Pandora FMS 742, exploitable by the lowest privileged user.

CPENameOperatorVersion
pandora_fmseq742

CPE	Name	Operator	Version
	pandora_fms	eq	742

References

blog.sonarsource.com/pandora-fms-742-critical-code-vulnerabilities-explained

pandorafms.com/blog/whats-new-in-pandora-fms-743/

portswigger.net/daily-swig/multiple-vulnerabilities-in-pandora-fms-could-trigger-remote-execution-attack