CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

NVD•added 2022/06/07 6:15 p.m.•24 views

CVE-2019-9972

PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an authenticated attacker to run arbitrary commands with the phonesystem user privileges because of " followed by " mishandling...

9CVSS0.01613EPSS

Exploits1References2

OSV•added 2022/06/07 6:15 p.m.•3 views

CVE-2019-9972

8.8CVSS7.4AI score0.01613EPSS

Exploits1References2

NVD•added 2022/06/07 6:15 p.m.•22 views

CVE-2019-9971

PhoneSystem Terminal in 3CX Phone System Debian based installation 16.0.0.1570 allows an attacker to gain root privileges by using sudo with the tcpdump command, without a password. This occurs because the -z aka postrotate-command option to tcpdump can be unsafe when used in conjunction with sud...

9CVSS0.01565EPSS

Exploits1References3

Prion•added 2022/06/07 6:15 p.m.•20 views

Command injection

9CVSS8.7AI score0.01565EPSS

Exploits1References3Affected Software1

Prion•added 2022/06/07 6:15 p.m.•20 views

Command injection

9CVSS8.6AI score0.01613EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/06/07 5:57 p.m.•23 views

CVE-2019-9972

8.7AI score0.01613EPSS

Exploits1References2

CVE•added 2022/06/07 5:57 p.m.•60 views

CVE-2019-9972

The CVE-2019-9972 issue affects 3CX Phone System (Debian-based) version 16.0.0.1570, where an authenticated attacker can run arbitrary commands as the phonesystem user due to mishandling of a local input pattern: " followed by ". The vulnerability is a command injection in the PhoneSystem Termina...

9CVSS8.6AI score0.01613EPSS

Exploits1References2Affected Software1

Cvelist•added 2022/06/07 5:56 p.m.•22 views

CVE-2019-9971

8.8AI score0.01565EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by