CVE-2019-11364
CVE-2019-11364 describes an OS command injection in Snare Central prior to 7.4.5. The vulnerability allows remote authenticated attackers to inject arbitrary OS commands via the ServerConf/DataManagement/DiskManager.php FORMNAS_share parameter. Affected product is Snare Central; root cause is uns...