5 matches found
Code injection
The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device...
CVE-2017-14853
The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device...
CVE-2017-14853
The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device...
CVE-2017-14853
The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an attacker is able to run shell commands and receive valid output from the device...
CVE-2017-14853
CVE-2017-14853 affects Orpak SiteOmat OrCU (SiteOmat) and is a code-injection vulnerability caused by improper handling of input in a search query that leads to direct shell command execution. Affected versions are all prior to 2017-09-25. Successful exploitation enables remote code execution wit...