2 matches found
CVE-2022-31795
An issue was discovered on Fujitsu ETERNUS CentricStor CS8000 Control Center devices before 8.1A SP02 P04. The vulnerability resides in the grelfinfo function in grel.php. An attacker is able to influence the username user, password pw, and file-name file parameters and inject special characters...
CVE-2022-31795
CVE-2022-31795 affects Fujitsu ETERNUS CentricStor CS8000 Control Center before 8.1A SP02 P04. The vulnerability resides in grel_finfo() in grel.php; an attacker can influence username (user), password (pw), and file-name (file) parameters to inject characters (e.g., semicolons, backticks, comman...