Command injection

2024-01-1921:15:00

PRIOn knowledge base

www.prio-n.com

anomali match

command injection

os command injection

untrusted input

privilege escalation

fixed versions

nvd

operating system

7.2 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

19.8%

JSON

Anomali Match before 4.6.2 allows OS Command Injection. An authenticated admin user can inject and execute operating system commands. This arises from improper handling of untrusted input, enabling an attacker to elevate privileges, execute system commands, and potentially compromise the underlying operating system. The fixed versions are 4.4.5, 4.5.4, and 4.6.2. The earliest affected version is 4.3.

CPENameOperatorVersion
matchge4.6.0
matchlt4.6.2
matchge4.5.0
matchlt4.5.4
matchge4.3
matchlt4.4.5

Name	Operator	Version
match	ge	4.6.0
match	lt	4.6.2
match	ge	4.5.0
match	lt	4.5.4
match	ge	4.3
match	lt	4.4.5

References

www.anomali.com/collaborate/ciso-blog

www.anomali.com/security-advisory/anml-2023-01