3 matches found
CVE-2022-24392
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the “feedcommtest” value for the “feed” parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and...
CVE-2022-24392 Authenticated Command Injection Vulnerability in Fidelis Network and Deception
Vulnerability in Fidelis Network and Deception CommandPost enables authenticated command injection through the web interface using the “feedcommtest” value for the “feed” parameter. The vulnerability could allow a specially crafted HTTP request to execute system commands on the CommandPost and...
CVE-2022-24392
CVE-2022-24392 affects Fidelis Network and Deception CommandPost. The vulnerability allows authenticated command injection via the web interface when using feed_comm_test for the feed parameter; a crafted HTTP request could execute system commands on CommandPost and return results over HTTP withi...