Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4
Summary An OS command injection vulnerability in the management interface allows an authenticated administrator to execute arbitrary OS commands gaining access to the system. Impact Authenticated web GUI administrator can execute a command on the local system and then escalate privilege to the ro...